According to foreign media reports,Sony confirms it suffered two major data breaches earlier this year that may have exposed a large amount of personal information. According to reports,The first data breach occurred on May 28 this year,Launched by the Clop ransomware group via a zero-day vulnerability in the MOVEitTransfer platform, the vulnerability tracking number is CVE-2023-34362, which is a high-risk SQL injection vulnerability that can remotely execute arbitrary code.
access:Sony official flagship store
Sony discovered the attack three days later, temporarily disconnected the network and fixed the related vulnerabilities, but it hasThe personal information of 6,791 people in the United States was leaked.
Sony has currently sent relevant emails to these people and invited them to confirm their identities and restore services through Equifax before February 29, 2024. So far, Sony believes the incident is limited to that specific software platform.
The second data breach occurred late last month,A ransomware attack group called RansomedVC claims to have compromised Sony's online servers,andOver 3.14GB of data containing extensive user details stolen.
At the same time, the organization also stated that because Sony is unwilling to cooperate with negotiations and pay the required ransom, they will sell these "data and access rights" publicly.
Another organization, MajorNelson, also claimed responsibility for the attack and claimed that they were the real attackers., it is still difficult to determine who is the real culprit of this ransomware attack.
According to third-party forensic experts,The leak occurred on a Japanese server used for internal testing at Sony's entertainment, technology and services businesses, the server has now been taken offline, and the investigation is still ongoing.