Sony has found itself in the midst of a cyberattack controversy. The tech giant is currently investigating allegations of a significant data breach following claims made by a group identifying themselves as RansomedVC. This group has asserted responsibility for the alleged hack, stating that they have compromised all of Sony's systems. However, they seem to have no intention of deploying ransomware but to sell the acquired data, citing Sony's unwillingness to pay as the reason. “We have successfully compromised all of Sony systems. We won't ransom them! We will sell the data due to Sony not wanting to pay. DATA IS FOR SALE”, read a message from RansomedVC on their now suspended X (Twitter) account.
Contradictory Claims and Data Leaks
Adding a layer of complexity to the situation, another threat actor going by the moniker ‘MajorNelson' has also stepped forward, claiming responsibility for the attack and refuting RansomedVC's assertions. MajorNelson criticized the media for being gullible and accused RansomedVC of attempting to scam and chase influence. “You journalists believe the ransomware crew for lies. Far too gullible, you should be ashamed,” MajorNelson stated on BreachForums. Unlike RansomedVC, MajorNelson has leaked a substantial amount of data, approximately 3.14 GB, purportedly belonging to Sony, including credentials for internal systems and various files related to Sony's operations.
Sony's Response and Previous Incidents
Sony has acknowledged the ongoing investigation but has refrained from making any further comments at this time. The company's spokesperson conveyed, “We are currently investigating the situation, and we have no further comment at this time.” This incident brings back memories of Sony's previous encounter with a cyberattack in 2014, when North Korean hackers breached Sony Pictures, highlighting the recurring challenges the company faces in maintaining cybersecurity.