Sony admits two data breaches that occurred this year in a letter sent to former and current employee
Sony has been attacked by a ransomware group. The group is reported to have claimed “We have successfully compromised [sic] all of Sony systems. We won’t ransom them! We will sell the data. due to Sony not wanting to pay. DATA IS FOR SALE,” The group further added, “WE ARE SELLING IT”.
As per the recent report by Bleeping Computer, Sony has informed the 6,800 employees of the Sony Interactive Entertainment (SIE) division about this breach and about the steps they are taking to curb this situation. Sony informed the former and current members that this breach was due to a vulnerability in the MOVEit Transfer which is a file-managed transfer software used by employees at Sony and other companies.
Bleeping Computer has also uploaded a document that admits to the former and current employees that two data breaches took place. The first breach took place on May 28 and the second breach took place on June 2. Sony has also mentioned that affected members are being offered Equifax credit monitoring and identity restoration services. A similar incident of data breach took place in 2011 when PlayStation Network was hacked thus risking 77 million accounts.