Sony Interactive Entertainment (SIE) discloses a cybersecurity breach caused by the exploitation of a zero-day vulnerability in Progress Software’s MOVEit Transfer platform.
Nearly 6791 current and former workers or members of their families who reside in the United States were impacted by the data breach, which includes some personal information.
The Cl0p ransomware group, a criminal organization with ties to Russia, claimed responsibility for carrying out the attack. The group allegedly took data from Sony in June.
Insights of the Sony’s Cybersecurity Breach
According to the Data breach notice, Progress Software, which is utilized by SIE and countless other businesses worldwide, disclosed a newly identified vulnerability in its MOVEit file transfer platform on May 31, 2023.
Implementing AI-Powered Email security solutions “Trustifi” can secure your business from today’s most dangerous email threats, such as Email Tracking, Blocking, Modifying, Phishing, Account Take Over, Business Email Compromise, Malware & Ransomware
Before Progress Software disclosed the flaw, the company said they were made aware of it on May 28, 2023; an unauthorized actor used the flaw to obtain certain SIE files kept on its MOVEit platform.
The company found the unauthorized downloads on June 2, 2023, promptly took the platform offline, and fixed the issue. After that, an inquiry was started with support from outside cybersecurity professionals. Law enforcement was also informed.
“This event was limited to Progress Software’s MOVEit Transfer platform and did not impact any of our other systems”, reads the notice.
The particular information involved in the breach was censored in the notice. In addition to rapidly patching the vulnerability, SIE has improved system monitoring and is taking additional precautions to lower the likelihood of a future cyber incident of this nature.
SIE is also providing free Equifax Complete Premier credit monitoring and identity restoration services to recipients.
Victims of MOVEit Attack
Following accusations on hacker forums that Sony had experienced another security breach and that 3.14 GB of data had been taken from the business’s servers, the corporation replied by stating that it was looking into the allegations. In the last four months, Sony has been the victim of two security breaches.
The MOVEit attacks exposed the clients of several renowned organisations. For example, TD Ameritrade, a US stockbroker, stated that over 60,000 of its clients had their bank account data stolen by Cl0p.
Data breaches involving private student information have occurred as a result of the MOVEit vulnerability, which has impacted over 900 schools in the United States.
American Airlines, TJX off-price department stores, TomTom, Pioneer Electronics, Autozone, Johns Hopkins University, and Health System are among the other organizations that have been cited as victims.
In July 2023, the Cl0p ransomware group took the unusual action of releasing data stolen through this vulnerability on its Clearnet website rather than assigning it to the dark web. On their website, they mention several victims, including Sony.
Recommendation
It is wise to routinely check and monitor your account statements and credit history for any indications of unauthorized transactions or activity to protect yourself against identity theft and fraud risks.
You can get in touch with your local law enforcement if you ever think you may be a victim of fraud or identity theft.
Protect yourself from vulnerabilities using Patch Manager Plus to quickly patch over 850 third-party applications. Take advantage of the free trial to ensure 100% security.