Sony Admits to Cyberattack Exploiting MOVEit Zero-Day: Thousands of Employees Affected

Estimated read time 2 min read

Introduction: A Major Setback for Sony

Could your personal data be at risk even if you work for a tech giant? Sony has confirmed a cyberattack that potentially compromised the data of around 6,800 current and former employees, all based in the United States.

Quick Facts

  • Vulnerability: CVE-2023-34362 in MOVEit Transfer
  • Impact: Data of approximately 6,800 U.S.-based employees potentially compromised
  • Responsible Group: Ransomware group CLoP
  • Status: Vulnerability has been fixed; no misuse of data reported

The Vulnerability: MOVEit Zero-Day Exploit

The breach occurred due to a zero-day vulnerability in the MOVEit Transfer file transfer program by Progress Software, according to a letter1 Sony sent to the affected individuals. The flaw, identified as CVE-2023-34362, allowed for SQL injection, making remote code execution possible. Interestingly, several Dutch companies also appeared to be vulnerable to this exploit.

Who’s Behind the Attack?

The ransomware group CLoP has claimed responsibility for the attack on Sony, which took place on May 28th. Sony became aware of the zero-day vulnerability just a few days later and subsequently fixed it. According to the company, no misuse of the stolen data has been reported so far.

Just a week ago, Sony was in the headlines for another alleged ransomware attack. A relatively unknown hacker group called RansomedVC claimed to have hacked ‘all of Sony.’ While initially doubtful, another hacker group later claimed responsibility for the same attack, making the situation more complex.

What Was Stolen?

The stolen data reportedly includes certificates, credentials for various services, and cyber attack incident policies, according to the second hacker group. However, Sony has not confirmed these details, and there is no evidence to suggest that this was due to the same MOVEit vulnerability.

  1. ↩︎
Reza Rafati

Reza Rafati, based in the Netherlands, is the founder of An industry professional providing insightful commentary on infosec, cybercrime, cyberwar, and threat intelligence, Reza dedicates his work to bolster digital defenses and promote cyber awareness.

You May Also Like

More From Author

+ There are no comments

Add yours