Sony confirms employee personal information has been exposed in a data breach
by Danny Craig
·
Sony
Sony Interactive Entertainment (SIE) has confirmed that a data breach earlier this year exposed the personal information of nearly 6,800 former and current employees.
The details:
- As reported by BleepingComputer, PlayStation owner SIE has begun contacting those affected by the data breach, which occurred in May. According to Sony, a security vulnerability was discovered in Progress Software's MOVEit file transfer platform, which was used internally by employees. However, days before the vulnerability was discovered, an "unauthorized actor" accessed and downloaded files containing the personal information of 6,791 employees.
- Sony is now providing free credit monitoring and identity restoration services to those who have been affected, and the company is warning employees to be on the lookout for potential cases of fraud and identity theft as a result of the breach.
- CL0P, a ransomware group, has claimed responsibility for the incident, listing the company among its victims on its deep web portal. There was also a warning message that read, "The company doesn't care about its customers, it ignored their security!!!β
- The breach does not appear to be related to recent claims by another ransomware group that claimed to have compromised "all of Sony's systems" and was ready to sell the data to the highest bidder. Sony has also responded to these claims, stating that it is investigating the situation.
More gaming news:
- Nintendo has officially announced the release of Animal Crossing Lego sets, with a short teaser showing off fan-favorite characters in minifigure form. Leaks about the sets began to circulate earlier this year, with five sets rumored to be in the works.
- Blizzard has announced that Diablo IV will be available on Steam in October, just four months after it debuted as a Battle.net exclusive for PC users. Due to cross-play functionality, those who want to play the ARPG on Steam will still need a Battle.net account.