Info@NationalCyberSecurity
Info@NationalCyberSecurity
0

Ransomware Group Claims it Has Breached ‘All’ of Sony’s Systems • DIGIT | #ransomware | #cybercrime


The multinational company has a market cap of over $102 billion (£83.7bn), and is known primarily for its gaming console PlayStation, as well as being a big player in film and music.

According to an article by an Australian cybersecurity analysis publication Cyber Security Connect, Sony fell victim to an attack orchestrated by a relatively new hacking group called Ransomed.vc. 

“Until Sony provides further information, it is not clear if this breach took place, but the warnings from Ransomed.vc should never be ignored,” said Ryan McConechy, CTO of Barrier Networks.

“Making false announcements on victims is something ransomware gangs avoid as it damages their reputations and profitability opportunities, so there is a strong possibility the claims are genuine,” he continued. 

The new group only emerged this month, but is suspected of having connections to other dark web forums and hacking groups. According to Cyber Security Connect, the group claims to have compromised all of Sony’s systems, saying: “We won’t ransom them! We will sell the data. Due to Sony not wanting to pay.”

Details gleaned in the breach include screenshots of Sony’s log-in page, information on test breach specifications, Java files, and posted a document tree with a repository of 6,000 files, which is rather small considering the group claims to have accessed all systems. 

The group has given buyers until the 28th of September to purchase the data, after which the information will presumably be published publicly. Ransomed.vc has not disclosed a price for the stolen data but left contact information for Sony to communicate.


Recommended


This is not the first time Sony has faced cybersecurity challenges. In 2011, the company experienced a breach in its PlayStation Network, which compromised 77 million accounts. 

“If the claims are accurate, it is essential Sony takes remediation action immediately. This includes running forensics to understand what data has been stolen and then working to reduce its value by updating systems. Additionally, Sony must also inform impacted parties so they can be on guard for phishing scams and be alert for further attacks,” said Mike Newman, CEO of My1Login.

“The incident will also act as a reminder to educate employees on the serious risk posed by cyber-crime today and the need for them to be vigilant for attacks.”

At the time of writing, Sony has not confirmed or denied the occurence of any cyber-incident.





Source link

National Cyber Security

FREE
VIEW