Source: securityaffairs.com – Author: Pierluigi Paganini
Threat actors claim the hack of Sony, and the company investigates
Pierluigi Paganini
September 26, 2023
Sony launched an investigation into an alleged data breach after the RansomedVC group claimed the hack of the company.
Sony announced it is investigating allegations of a data breach after the RansomedVC extortion group claimed to have hacked the company and added the company to its Tor leak site.
“We are currently investigating the situation, and we have no further comment at this time.” Sony said.
The ransomware group published some files as proof of the hack, but it is unclear if the threat actors were able to compromise all the company’s systems.
The RansomedVC group doesn’t deploy any ransomware on the victim’s networks.
“We have successfully compromissed all of sony systems. We wont ransom them! we will sell the data. due to sony not wanting to pay. DATA IS FOR SALE” reads the message published by the extortion group on the leak site.
RansomedVC told BleepingComputer that it has stolen 260 GB of data from Sony’s networks and they are attempting to sell stolen data for $2.5 million.
While RansomedVC claims the hack, another threat actor that goes online with the moniker ‘MajorNelson’ also claims responsibility for the attack and says RansomVC is lying.
“You journalists believe the ransomware crew for lies. Far too gullible, you should be ashamed,” reads the post published by MajorNelson on BreachForums. “RansomedVCs are scammers who are just trying to scam you and chase influence. Enjoy the leak.”
Today someone operating under the name “MajorNelson”, a nod to the former Director of Programming for the Microsoft gaming network Xbox Live, asserts RansomVC is lying.
He then released all the content RansomVC claimed to have into the general public.
tl;dr another Sony leak? pic.twitter.com/82HHd9nFzG
— vx-underground (@vxunderground) September 26, 2023
Because nerds keep asking us about alleged Sony ransomware incident
tl;dr Threat Actors did not deploy ransomware, no corporate data was stolen, services not impacted. Data was exfiltrated from Jenkins, SVN, SonarQube, and Creator Cloud Development. They’re extorting Sony
— vx-underground (@vxunderground) September 25, 2023
MajorNelson leaked a compressed archive of 2.4 GB in size which contains “A lot of credentials for internal systems,” and data related to
- SonarQube
- Creators Cloud
- Sony’s certificates
- A device emulator for generating licenses
- qasop security
- Incident response policies
- and more.
For more information on the alleged hack, stay tuned …
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
(SecurityAffairs – hacking, Sony)
Original Post URL: https://securityaffairs.com/151518/data-breach/threat-actors-claim-sony-hack.html
Category & Tags: Breaking News,Cyber Crime,Data Breach,Hacking,Cybercrime,data breach,hacking news,information security news,IT Information Security,Pierluigi Paganini,RansomedVC ransomware,ransomware,Security Affairs,Security News,Sony – Breaking News,Cyber Crime,Data Breach,Hacking,Cybercrime,data breach,hacking news,information security news,IT Information Security,Pierluigi Paganini,RansomedVC ransomware,ransomware,Security Affairs,Security News,Sony
