Sony Suffers Two Hacks In Four Months, Thousands Of Employees' Info Exposed

Ethan Gach
1 min read
1
A woman wears a PS VR headset while smiling in front of a Sony sign.
A woman wears a PS VR headset while smiling in front of a Sony sign.

A week after an extortion group called Ransomed.vc claimed to have hacked into Sony’s systems and stolen 3.14GB of data, the company has admitted to a second security breach. This one occurred back in May and involved the personal data of nearly 6,791 current and former employees.

The older but previously unknown hack was reported earlier today by Bleeping Computer. A notice from Sony to employees said the hack occurred by way of an exploit in “Progress Software’s MOVEit Transfer platform.” The security breach occurred on May 28 before the exploit was fixed, leading the personal information of thousands of current and former employees at Sony Interactive Entertainment to be compromised.

Read more

No information appears to have leaked from the most recent breach, although there has been some dispute over who exactly was responsible for it. While Ransomed.vc originally claimed responsibility and threatened to release the data unless Sony paid it $2.5 million, another user called “MajorNelson,” seemingly named after the now-retired Xbox hype-man, said the group was not involved. They then went ahead and leaked a 2.4 GB compressed archive that allegedly included actual Sony data, though no one has yet verified if that’s actually the case.

So far at least, neither hack appears to be anywhere near the scale of major security breaches at Sony in the past, including North Korea’s hack of its movie division and that time when PlayStation Network went down for over a month.

        

More from Kotaku

Sign up for Kotaku's Newsletter. For the latest news, Facebook, Twitter and Instagram.

Click here to read the full article.

Advertisement

Recommended Stories