Sony Faces Alleged Ransomware Attack: What We Know So Far

Unveiling the Intricacies of the Sony Ransomware Attack: A Closer Look at Ransomed.vc

In a recent development in the cybersecurity landscape, a new ransomware group known as Ransomed.vc has claimed responsibility for a breach of all of Sony’s systems. The incident, reported by Australian cybersecurity publication Cyber Security Connect on September 25, has raised concerns about data security and the implications for the Japanese tech giant.

Ransomed.vc, a relatively new player in the hacking scene with links to previous dark web forums, has apparently penetrated Sony’s defenses in a short span of operation, dating back to September. The breach is said to have exposed sensitive information, including screenshots of Sony’s internal login page, an internal PowerPoint presentation detailing test bench details, Java files, and a vast document tree containing approximately 6,000 files.

Notably, Ransomed.vc has declared its intent not to ransom the data but to sell it due to Sony’s unwillingness to comply with their demands. The group has not disclosed a specific price for the data, but they have provided contact details for Sony and set a “post date” of September 28, possibly indicating when they plan to release the information publicly.

Within the trove of leaked files are a range of documents, including mysterious “build log files,” various Java resources, and HTML data, with many files reportedly in Japanese. This incident is a stark reminder of the constant threats posed by cybercriminals, even to well-established corporations like Sony.

What adds an intriguing layer to this case is that Ransomed.vc appears to be both a ransomware operator and a ransomware-as-a-service organization. Beyond conducting large-scale hacks, they are purportedly leveraging data privacy laws, including the EU’s General Data Protection Regulation (GDPR), to report vulnerabilities in corporate systems and violations of data protection laws. This approach, as reported by Cyber Security Connect, involves pressuring victims into compliance through legal channels.

As of now, Sony has not officially commented on the breach or the extent of its impact. Kotaku reached out to Sony for a statement, and further developments are awaited.

This incident is not Sony’s first encounter with hacking. In 2011, the PlayStation Network suffered a major breach that compromised 77 million registered accounts and disrupted online services. Sony had to answer to Congress and provide compensation to affected users. While the scale of the current breach may be smaller, it underscores the ongoing importance of cybersecurity for all organizations, including tech giants like Sony.

In light of this breach, Sony will likely intensify its security measures, reinforcing the need for vigilance in an era where cyber threats continue to evolve.