all InfoSec news
Sony confirms data breach impacting thousands in the U.S.
Oct. 4, 2023, 7:26 p.m. | /u/TheCyberReel
cybersecurity www.reddit.com
* Sony Interactive Entertainment (SIE) has informed approximately 6,800 individuals about a data breach.
* Personal information of current and former employees and their families has been exposed.
How the breach occured:
* The breach was executed via a zero-day vulnerability, CVE-2023-34362.
* A critical-severity SQL injection flaw in the MOVEit Transfer platform was exploited.
* This flaw enables remote code execution and has been widely utilized by the Clop ransomware group in large-scale global attacks.
Timeline of …
breach breach notification critical current cve cve-2023-34362 cybersecurity data data breach employees entertainment exposed flaw information injection injection flaw notification personal personal information severity sie sony sql sql injection vulnerability zero-day zero-day vulnerability
More from www.reddit.com / cybersecurity
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Associate Principal Security Engineer
@ Activision Blizzard | Work from Home - CA
Security Engineer- Systems Integration
@ Meta | Bellevue, WA | Menlo Park, CA | New York City
Lead Security Engineer (Digital Forensic and IR Analyst)
@ Blue Yonder | Hyderabad
Senior Principal IAM Engineering Program Manager Cybersecurity
@ Providence | Redmond, WA, United States
Information Security Analyst II or III
@ Entergy | The Woodlands, Texas, United States