Global entertainment behemoth, Sony, is currently under scrutiny amidst rising concerns over the potential leakage of personal details. This follows a declaration by a ransomware group alleging a significant cyber-attack on the company.
Ransomed.vc’s Bold Claim
Cyber Security Connect has reported that the group, identifying itself as Ransomed.vc, has proclaimed the success of their cyber intrusion. Their announcement, however, was marred by several typographical errors:
“We have successfully compromissed [sic] all of sony systems. We wont ransom them! we will sell the data. due to sony not wanting to pay. DATA IS FOR SALE.”
In an attempt to validate their assertions, Ransomed.vc has showcased what they claim to be evidence of their hack. This includes screenshots of Sony’s internal log-in page, a PowerPoint presentation detailing test bench specifics, and several Java files.
Furthermore, the group has unveiled a file directory, purportedly representing the entirety of the data breach. Yet, with fewer than 6,000 files in the leak, skeptics are questioning the veracity of the group’s claim that they have infiltrated “all of Sony systems.”
Ransomed.vc has indicated a “post date” of 28 September 2023, suggesting that if the data remains unpurchased, they intend to release it in its entirety. The asking price for this data remains undisclosed.
At the time of this report, Sony has yet to issue any official statements or comments on their platforms regarding the alleged cyber-attack.
Who is Ransomed.vc?
Ransomed.vc presents itself as both an independent ransomware entity and a provider of ransomware-related services. They assert their role as a “secure solution for addressing data security vulnerabilities within companies.” Interestingly, they also claim to operate in alignment with the General Data Protection Regulation (GDPR) and other Data Privacy Laws. The group has further stated that non-payment would compel them to report a violation of Data Privacy Law to the GDPR agency.
The purported hack has sent ripples through the PlayStation gaming community. Many online users are drawing parallels with the 2011 incident, where Sony’s PlayStation Network faced an “external intrusion.” That breach compromised personal details from an estimated 77 million accounts, barring console users from accessing services.
In light of the current situation, some individuals are advising others to either “cancel their credit card” or extract their details to prevent potential misuse if the data is indeed sold.
However, it’s crucial for the public to approach this situation with caution. As of now, the full extent of the situation remains unclear, and it might be premature to take drastic actions such as cancelling credit cards.