A ransomware group known as “Ransomed. Vc” has asserted that it has successfully breached Sony Group's systems and is now threatening to sell a trove of data stolen from the Japanese conglomerate.
While the claims are yet to be verified, Ransomed. Vc, a relatively new player in the ransomware scene, has rapidly accumulated numerous victims since its emergence last month.
The group has boldly declared on both clear and dark web channels, "We have successfully compromised all of Sony systems. We won't ransom them! We will sell the data. Due to Sony not wanting to pay. DATA IS FOR SALE."
Cyber Security Connect has reported that the group has posted some proof-of-hack data, although initial assessments suggest it may not be particularly compelling.
This includes screenshots of an internal login page, an internal PowerPoint presentation, Java files, and a file tree with fewer than 6,000 files.
The group has set a "post date" of September 28, indicating that if no one purchases the data by then, Ransomed. Vc intends to release it publicly.
Ransomed. Vc is described as both a ransomware operator and a ransomware-as-a-service organization.
It claims to offer a secure solution for addressing data security vulnerabilities while asserting strict compliance with GDPR and Data Privacy Laws. The group's members are reportedly mainly based in Ukraine and Russia.
In 2011, Sony's PlayStation Network faced a major breach, compromising the personal details of approximately 77 million accounts and resulting in a disruption of service for 23 days.
Sony estimated the cost of the hack to be over $100 million and faced numerous lawsuits, eventually offering compensation to affected users and developers.
VGC has reached out to Sony for comment on the current situation and will provide updates as necessary.