Crime group Ransomed.VC claims significant data breach on Sony

Ransomed.VC, a relative ransomware newcomer on the crime scene claimes to have succeeded in what could be a devastating ransomware attack on global entertainment giant Sony.

“We have successfully compromissed [sic] all of sony systems. We wont ransom them! we will sell the data. due to sony not wanting to pay. DATA IS FOR SALE,” the group adds, before declaring “WE ARE SELLING IT”.

The group does include some proof-of-hack data, but it’s not particularly compelling information on the face of things – there appear to be screenshots of an internal log-in page, an internal PowerPoint presentation outlining test bench details, and a number of Java files. Ransomed.vc has also posted a file tree of the entire leak, which appears to have less than 6,000 files – seemingly small for “all of Sony systems”. Included here are “build log files”, a wide range of Java resources, and HTML files.
Many of the sample files appear to feature Japanese characters prominently.

No price is listed for the data, but Ransomed.vc has left contact details for the Tox messaging service, as well as Telegram and email details. The group has also listed a “post date” of 28 September 2023. If no one purchases the data, this is presumably when Ransomed.vc will publish it wholesale.
Sony has not made any mention of a possible hack on its websites nor a confirmation of a cybersecurity incident.

Update - On the 25th of September Sony acknowledged the attack and confirmed that they are investigating the issue.

Ransomwed.VC claims that they are operating “in strict compliance with GDPR and Data Privacy Laws” - which really means that if the victim fails to pay, the criminals will also report a Data Privacy Law violation to a GDPR agency which will add more penalties to the victim. The only reason for being "compliant" is to extort money more successfully.