• Hey, guest user. Hope you're enjoying NeoGAF! Have you considered registering for an account? Come join us and add your take to the daily discourse.

PlayStation confirms data breach exposed 7,000 former and current employees’ personal info. No impact on its other systems.

Draugoth

Gold Member
sony-building-1024x538.jpg


Sony Interactive Entertainment has confirmed that around 6,800 current and former employees have had their personal information exposed.

As reported by BleepingComputer, the PlayStation maker has been contacting those affected and letting them know what happened.

According to Sony, the breach involved the MOVEit file transfer platform used by SIE employees, which is developed by third-party IT vendor Progress Software.

Progress announced on May 31 that it had discovered a vulnerability in MOVEit, but three days before this, an “unauthorised actor” had already used the vulnerability to download SIE files, accessing personal information for 6,791 current and former SIE employees based in the United States.

Sony claims the incident was limited to this particular software platform and had no impact on its other systems.
 

Kilau

Member
After the Equifax hack, I just drive around like the LifeLock guy.

lifelock.jpg.optimal.jpg


His identity was stolen over a dozen times in the first year lol.
 

nowhat

Member
Not a good look for Sony for sure (although they certainly weren't the only ones affected), but this is not ransomware, nor do the script kiddies have "all of Sony's data".
 

nowhat

Member
was it something related to their security or did someone got their password stolen with a phishing email?
It was a vulnerability in a third-party file transfer program used by many (not just Sony by far, as the link will tell you). A particularly nasty vulnerability at that, which allowed remote code execution/access, and it was a true zero-day (meaning there was no patch when it started being exploited).
 
Top Bottom