The alleged hackers plan to sell the data, which contains around 6,000 files.
Image Credit: Sony
Japanese tech and entertainment giant Sony has reportedly undergone a massive ransomware attack in recent days, with the hacking group Ransomed.vc claiming to have breached "all of Sony systems" and announcing its intention to sell the compromised information to anyone interested.
According to a report by Cyber Security Connect, Ransomed.vc is a relatively new group that has been active for only about a month but has already managed to target a significant number of victims, with Sony apparently being one of them. As proof of their successful breach, the group shared several screenshots of an internal login page, an internal PowerPoint presentation, various Java files, and a file directory containing around 6,000 files.
The group has also set a "post date" of September 28, 2023, presumably the final date for potential buyers to acquire the data. The fate of the data after this date remains uncertain, however, Cyber Security Connect's report suggests that it is highly likely that if the data remains unpurchased, it will be published wholesale. Sony itself has not made any official mention of the hack and has refrained from commenting on the matter.
"We have successfully [compromised] all of [Sony] systems," stated the hacking group. "We won't ransom them! We will sell the data. Due to [Sony] not wanting to pay. DATA IS FOR SALE."
Image Credit: Cyber Security Connect
If this attack turns out to actually be true, it wouldn't be the first instance of Sony's security failing to protect the company's data and the safety of its users. Back in 2011, the company's PlayStation Network also experienced a significant breach that resulted in the compromise of personal details from approximately 77 million accounts, impacting both developers and gamers. In the aftermath of the breach, Sony faced up to 55 class action lawsuits and ultimately apologized to its users and agreed to offer compensation to those affected.