Threat actors claim the hack of Sony, and the company investigates
2023-9-27 05:55:56 Author: securityaffairs.com(查看原文) 阅读量:4 收藏

Threat actors claim the hack of Sony, and the company investigates

Pierluigi Paganini September 26, 2023

Sony launched an investigation into an alleged data breach after the RansomedVC group claimed the hack of the company.

Sony announced it is investigating allegations of a data breach after the RansomedVC extortion group claimed to have hacked the company and added the company to its Tor leak site.

“We are currently investigating the situation, and we have no further comment at this time.” Sony said.

The ransomware group published some files as proof of the hack, but it is unclear if the threat actors were able to compromise all the company’s systems.

The RansomedVC group doesn’t deploy any ransomware on the victim’s networks.

“We have successfully compromissed all of sony systems. We wont ransom them! we will sell the data. due to sony not wanting to pay. DATA IS FOR SALE” reads the message published by the extortion group on the leak site.

Sony

RansomedVC told BleepingComputer that it has stolen 260 GB of data from Sony’s networks and they are attempting to sell stolen data for $2.5 million.

While RansomedVC claims the hack, another threat actor that goes online with the moniker ‘MajorNelson’ also claims responsibility for the attack and says RansomVC is lying.

“You journalists believe the ransomware crew for lies. Far too gullible, you should be ashamed,” reads the post published by MajorNelson on BreachForums. “RansomedVCs are scammers who are just trying to scam you and chase influence. Enjoy the leak.”

Today someone operating under the name "MajorNelson", a nod to the former Director of Programming for the Microsoft gaming network Xbox Live, asserts RansomVC is lying.

He then released all the content RansomVC claimed to have into the general public.

tl;dr another Sony leak? pic.twitter.com/82HHd9nFzG

— vx-underground (@vxunderground) September 26, 2023

Because nerds keep asking us about alleged Sony ransomware incident

tl;dr Threat Actors did not deploy ransomware, no corporate data was stolen, services not impacted. Data was exfiltrated from Jenkins, SVN, SonarQube, and Creator Cloud Development. They're extorting Sony

— vx-underground (@vxunderground) September 25, 2023

MajorNelson leaked a compressed archive of 2.4 GB in size which contains “A lot of credentials for internal systems,” and data related to

  • SonarQube
  • Creators Cloud
  • Sony’s certificates
  • A device emulator for generating licenses
  • qasop security
  • Incident response policies
  • and more.

For more information on the alleged hack, stay tuned …

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, Sony)




文章来源: https://securityaffairs.com/151518/data-breach/threat-actors-claim-sony-hack.html
如有侵权请联系:admin#unsafe.sh