Sony appears to be the latest victim of a significant cyber breach as ransomware group Ransomed.vc claims to have infiltrated “all Sony systems,” stirring memories of the colossal 2011 attack on Sony’s PlayStation Network.
Ransomed.vc’s Bold Claims
A newly-emerged ransomware group professes to have compromised Sony's comprehensive systems and has intentions to sell the supposedly stolen data, deliberately avoiding the typical ransom demands.
Ransomed.vc announced their claim publicly, stating:
“We have successfully compromised all of Sony's systems. We won’t ransom them! We will sell the data. Due to Sony not wanting to pay. DATA IS FOR SALE.”
This alarming notice has yet to be verified, but the group has made waves in the cyber world since its recent emergence, with reports from Cyber Security Connect stating that they’ve amassed a notable list of victims.
While the authenticity of the claim remains uncertain, the group has released what they purport to be proof of the hack, albeit not overly convincing at first glance. It consists of seemingly internal login pages, a PowerPoint presentation, and several Java files, among other things. The group has given a “post date” of September 28, postulating that this could be when the data is revealed wholesale if it isn’t purchased.
Ransomed.vc’s Modus Operandi
Describing themselves as a secure solution addressing data security vulnerabilities within companies, Ransomed.vc operates as both a ransomware entity and a ransomware-as-a-service organization. Reports suggest the majority of its members operate out of Ukraine and Russia.
Echoes of the Past: Sony’s 2011 Nightmare
Sony has previously grappled with a significant breach in 2011, impacting its PlayStation Network and compromising around 77 million accounts' personal details. The repercussion was massive, leading to services going offline for 23 days and costs escalating over $100m for Sony. The incident saw Sony facing numerous lawsuits and offering compensation to the aggrieved parties, including free games.
Current Scenario and Responses
Currently, the validity of Ransomed.vc’s allegations is undetermined. Although some supposed proof has been posted, there isn’t conclusive evidence to substantiate the claims.
A Disturbing Trend and a Wake-up Call
This event underscores the recurring nature of cyber threats and raises questions about data security measures, reminding us of the vulnerabilities that exist even in large corporations. It emphasizes the urgent need for stringent cybersecurity measures to counter such malicious activities.