Sony confirms data breach impacting thousands of workers

News
By published

Breach of Sony systems had been announced on the dark web

ID theft
Image credit: Pixabay (Image credit: Future)

Sony has confirmed reports that sensitive data from current and former employees had been stolen by outside forces.

In a breach notification letter sent out to affected individuals, Sony said that hackers leveraged a flaw in the MOVEit managed file transfer software to steal sensitive personal information belonging to them, or possibly their family members. 

As per the letter, the attack occurred on May 28, mere days before Progress - the company behind MOVEit - started warning its clients of a high-severity flaw in the application. 

List of victims grows

“On June 2, 2023, [Sony] discovered the unauthorized downloads, immediately took the platform offline, and remediated the vulnerability,” the letter added. “An investigation was then launched with assistance from external cybersecurity experts. We also notified law enforcement,” Sony concluded.

While the company stressed that the breach was contained in this software platform and did not spill elsewhere on its network, it seems to have been enough, as sensitive data on 6,791 people in the U.S. was taken by a Russian financially motivated ransomware actor known as Cl0p.

In the meantime, Cl0p already listed Sony on its data leak site, and started selling the stolen goods, meaning that Sony wasn’t interested in negotiations or paying the ransom demand. In the ad posted on the dark web, a threat actor going by the name Ransomed.vc posted a small sample of the data, including screenshots of an internal log-in page, an internal PowerPoint presentation, and some Java files. In the ad, it was said that “all of Sony systems” were compromised. 

Cl0p breaching MOVEit MFT is slowly turning into one of the biggest cyber mess-ups of all time, up there with the likes of Log4j and GoAnywhere. MOVEit is a managed file transfer service, a tool used by organizations to share sensitive information - securely. The tool is used by countless organizations, including small and medium-sized firms, but also large organizations and enterprises. Cl0p has so far listed hundreds of firms whose data were stolen through a single vulnerability, a critical-severity SQL injection flaw tracked as CVE-2023-34362. It allowed Cl0p to remotely run code on vulnerable endpoints.

More from TechRadar Pro

TOPICS
Sead Fadilpašić

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

Read more
Lock on Laptop Screen
Clop ransomware lists Cleo cyberattack victims
Cl0p ransomware group says it was behind Cleo attacks
Data leak
US utility giant says MOVEit hack exposed stolen data
A stylized depiction of a padlocked WiFi symbol sitting in the centre of an interlocking vault.
59 organizations reportedly victim to breaches caused by Cleo software bug
Code Skull
Casio confirms data of 8,500 people exposed in recent ransomware attack
How to prevent cyberattacks
NTT admits hackers accessed details of almost 18,000 corporate customers in cyberattack
Latest in Security
An American flag flying outside the US Capitol building against a blue sky
Sean Plankey selected as CISA director by President Trump
Ai tech, businessman show virtual graphic Global Internet connect Chatgpt Chat with AI, Artificial Intelligence.
Nation-state threats are targeting UK AI research
Scam alert
Fake jobs and phone calls: How Americans lost $12.5 bn to fraud in 2024
Application Security Testing Concept with Digital Magnifying Glass Scanning Applications to Detect Vulnerabilities - AST - Process of Making Apps Resistant to Security Threats - 3D Illustration
Google bug bounty payments hit nearly $12 million in 2024
Scam alert
A new SMS energy scam is using Elon Musk’s face to steal your money
Representational image of a cybercriminal
Allstate sued for exposing personal customer information in plaintext
Latest in News
Project Moohan prototype at Samsung Galaxy Unpacked, an XR goggles headset on display in a show area
Samsung's Android XR headset could avoid the Apple Vision Pro's biggest mistake, according to this leak
Rivian R1T
Big Rivian update delivers hands-off driving to rival Tesla Autopilot – and a new 'Rally' mode
The Samsung Galaxy S25 Edge, close up on the dual camera system, against a marbled background
The Samsung Galaxy S25 Edge is being tipped to come with a sweet Google Gemini deal
Diego Luna looks questioningly at the back of someone's head as Cassian Andor in the show Andor
Disney+ is making Andor free to stream on YouTube, and now you have no excuse not to watch the best Star Wars show
Matt Murdock and Kirsten McDuffie standing in a court room in Daredevil: Born Again
Daredevil: Born Again episode 3 contains another Marvel reference to Spider-Man, but it's got nothing to do with Tom Holland's Peter Parker
Man having Windows 11 problems with his laptop
Fed up of adverts creeping into Windows 11? You won’t like Microsoft’s latest update, then, although it does provide some important bug fixes
More about security
Dr Chase Cunningham speaking at ZTW25

The grand delusion: endpoint protection isn’t the magic pill, says Dr Zero Trust
An American flag flying outside the US Capitol building against a blue sky

Sean Plankey selected as CISA director by President Trump
Cara Dutton looks upset as she leans on Jacob Dutton's shoulder in 1923 season 2.

1923 has taken the reigns as the #1 show on Paramount+ – here are 3 more Westerns with over 85% on Rotten Tomatoes to watch next
See more latest
Most Popular
Diego Luna looks questioningly at the back of someone's head as Cassian Andor in the show Andor
Disney+ is making Andor free to stream on YouTube, and now you have no excuse not to watch the best Star Wars show
Project Moohan prototype at Samsung Galaxy Unpacked, an XR goggles headset on display in a show area
Samsung's Android XR headset could avoid the Apple Vision Pro's biggest mistake, according to this leak
Canva
It's just a concept for now, but this RTX 5090 liquid-cooled gaming laptop is possibly the craziest thing I've seen in a while
Rivian R1T
Big Rivian update delivers hands-off driving to rival Tesla Autopilot – and a new 'Rally' mode
Matt Murdock and Kirsten McDuffie standing in a court room in Daredevil: Born Again
Daredevil: Born Again episode 3 contains another Marvel reference to Spider-Man, but it's got nothing to do with Tom Holland's Peter Parker
The Samsung Galaxy S25 Edge, close up on the dual camera system, against a marbled background
The Samsung Galaxy S25 Edge is being tipped to come with a sweet Google Gemini deal
iRobot Roomba Combo 405 Plus
7 of my favorite upgrades in the all-new Roomba robovacs – plus 2 I'm worried about
Person holding phone showing O2 logo in front of Virgin Media logo
Virgin Media O2 reveals £700m network transformation plan to boost reliability across the board
Person opening door fitted with Nuki Smart Lock Pro (5th Gen)
This renter-friendly smart lock fits over your existing door hardware, and costs less than you might expect
View on National Assembly building in Paris, France, with French and European flags flying.
France rejects controversial encryption backdoor provision