Sony says that it’s investigating allegations of a cyberattack this week as totally different hackers have stepped as much as declare accountability for the purported hack.
Whereas claims of attacking Sony’s techniques had been initially made by an extortion group known as RansomedVC, a distinct menace actor has touted themselves to be the attackers and refuted RansomedVC’s claims.
To date, over 3.14 GB of uncompressed knowledge, allegedly belonging to Sony, has been dumped on hacker boards.
Sony investigating as 3.14 GB of information leaked
This week, a menace actor by the identify of RansomedVC claimed it had hacked SONY.com and put its “knowledge and entry” up on the market.
“We have now efficiently [compromised] all of Sony techniques,” learn a be aware posted on RansomedVC’s onion leak website. “We wont ransom them! we are going to promote the info. on account of Sony not desirous to pay.”
(BleepingComputer)
BleepingComputer noticed the pattern knowledge posted by RansomedVC was minuscule, about 2 MB—comprising a PowerPoint presentation, some Java supply code information, Eclipse IDE screenshots, and different property.
RansomedVC claimed to BleepingComputer that it had breached Sony’s networks and stolen 260 GB of information through the assault that they’re trying to promote for $2.5 million.
Opposite to its identify, RansomedVC is an extortion group, somewhat than a ransomware operation, as they instructed us they’re nonetheless creating an encryptor.
We reached out to Sony Company for affirmation concerning the assault.
“We’re at present investigating the scenario, and we have now no additional remark presently,” a Sony Group Company spokesperson instructed BleepingComputer this morning.
Nevertheless, the issues have develop into murky, with one other menace actor ‘MajorNelson’ additionally claiming accountability for the assault, and refuting RansomedVC’s claims.
“You journalists consider the ransomware crew for lies. Far too gullible, you ought to be ashamed,” the menace actor MajorNelson posted on BreachForums, criticizing current information studies which have attributed the assault as actual with out affirmation and credited RansomedVC.
“RansomedVCs are scammers who’re simply attempting to rip-off you and chase affect. Benefit from the leak.”
(BleepingComputer)
Opposite to posting a small pattern, MajorNelson has “leaked at no cost” a 2.4 GB compressed archive, which incorporates 3.14 GB of uncompressed knowledge that it claims belongs to Sony.
The menace actor states that the dump incorporates:
“A number of credentials for inner techniques,” and information associated to:
- SonarQube
- Creators Cloud
- Sony’s certificates
- A tool emulator for producing licenses
- qasop safety
- Incident response insurance policies
- and extra.
BleepingComptuer additional noticed the archive posted by MajorNelson had all the information that had been current in RansomedVC’s small pattern, however definitive attribution stays a problem.
Whereas the info shared by the attackers does seem to belong to Sony, BleepingComputer was not capable of independently confirm the veracity of both menace actor’s claims.
Previous to this week’s allegations, Sony’s most outstanding encounter with a cyber assault occurred in 2014 when North Korean hackers breached Sony Footage in an try to censure the screening of the movie, The Interview.
