HQ/EMEAFind out how we can help your business
The notorious ransomware group, Ransomed.vc, has claimed to have infiltrated all of Sony Group’s systems. The affected company is currently scrambling to assess the situation and secure its data.
Ransomed.vc, a relatively new participant in the ransomware landscape, announced its successful breach on both clear and dark net channels, asserting that they have compromised Sony’s systems and intend to sell the stolen data due to Sony’s refusal to meet their ransom demands.
At this time of writing, Sony has officially confirmed that they are investigating the situation.
Ransomed.vc has gained notoriety in the past month, amassing an alarming number of victims. The group has taken a unique approach by threatening to auction off the stolen data, a difference from the traditional ransom demands.
Ransomed.vc has positioned itself as both a ransomware operator and a ransomware-as-a-service provider, emphasising its commitment to addressing data security vulnerabilities within targeted companies. The group has also claimed to operate in compliance with GDPR and Data Privacy Laws, stating that failure to receive payment would compel them to report violations to the GDPR agency.
Most of Ransomed.vc’s members are believed to operate out of Ukraine and Russia, making tracking and prosecution challenging.
As proof of their breach, Ransomed.vc has shared a limited set of data, including internal login screenshots, a PowerPoint presentation, Java files, and a file tree with fewer than 6,000 files. The group has set a “postdate” of September 28, indicating that if no one purchases the data, they will release it to the public.
This new Sony incident brings back memories of Sony’s 2011 PlayStation Network breach, which affected approximately 77 million accounts and cost the company over $100 million. Sony apologised and faced numerous lawsuits, offering compensation to affected users and partners.
The previous head of PlayStation US has acknowledged the importance of their user community, promising to make the PlayStation experience secure for all. As the tech giant confronts this latest breach, it remains to be seen how the company will respond and how it will prioritise the protection of its users’ data.
The cyber security landscape is evolving, and companies like Sony must remain vigilant in safeguarding their systems and customer information.
