Subj : A new ransomware group says it has breached Sony completely
To   : All
From : TechnologyDaily
Date : Tue Sep 26 2023 11:15:04

A new ransomware group says it has breached Sony completely

Date:
Tue, 26 Sep 2023 10:00:47 +0000

Description:
It is selling some 6,000 files stolen in the breach for an undisclosed sum of 
money.

FULL STORY
======================================================================

A new ransomware threat actor, going by the name Ransomed.vc, claims to have 
breached Sony in its entirety. 

In an ad recently posted on the dark web, the group said it breached all 
systems belonging to the Japanese tech conglomerate and stole sensitive 
corporate data. Given that the company isnt keen on paying the ransom demand, 
the group is selling the stolen data. 

The ad, seen by researchers at Cybersecurity Connect, also features a small 
sample of the data, which the publication says isnt particularly compelling. 
It includes screenshots of an internal log-in page, an internal PowerPoint 
presentation outlining testbench details, and some Java files. New players 

The group also posted a file tree of the entire leak, showcasing around 6,000 
files. For the researchers, this is relatively small, if all of Sony systems 
were compromised. Still, the file tree shows build log files, some Java 
resources, and HTML files. Plenty of the stolen files were in Japanese, it 
was noted. 

The group did not say how much money it was looking to make on the database. 
So far, Sony hasnt made any announcements regarding the breach. 

Ransomed is a relatively new player on the scene, apparently emerging only 
this month, but it does have some connections to older groups. In its short 
lifespan, it has already managed to rack up a few victims, including Japanese 
mobile operator NTT Docomo. Reports claim the group has listed dozens of 
victims on its leak site. 

When it first emerged, the group apparently adopted a unique strategy by 
threatening to report its victims to EU authorities if they didnt pay up, 
citing violation of data privacy laws in the region. 

In essence, Ransomed VC is leveraging the fear of these substantial fines to 
extort money from companies, said Incident Response Analyst Ron Kaminsky in 
its analysis of the group. This is an unusual approach, as most extortion or 
ransomware groups typically focus on encrypting data and demanding a ransom 
for its release, rather than exploiting data protection laws for financial 
gain. 

 Via Cybersecurity Connect More from TechRadar Pro Top data breaches and 
cyber attacks of 2022 Here's a list of the best firewalls today These are the 
best endpoint protection tools right now



======================================================================
Link to news story:
https://www.techradar.com/pro/security/a-new-ransomware-group-says-it-has-brea
ched-sony-completely


--- Mystic BBS v1.12 A47 (Linux/64)
 * Origin: tqwNet Technology News (1337:1/100)

.