The California Office of the Attorney General reported a data breach incident involving Sony Interactive Entertainment on October 3, 2023. The breach occurred on May 28, 2023, when an unauthorized actor exploited a vulnerability in Progress Software’s MOVEit transfer platform, leading to unauthorized downloads of personal information. The number of individuals affected is stated as 3 for residents of Rhode Island.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-574585
TPRM report: https://scoringcyber.rankiteo.com/company/sony-interactive-entertainment-llc
"id": "son626072525",
"linkid": "sony-interactive-entertainment-llc",
"type": "Breach",
"date": "5/2023",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': '3 (Rhode Island residents)',
'industry': 'Entertainment',
'name': 'Sony Interactive Entertainment',
'type': 'Company'}],
'attack_vector': 'Exploitation of Vulnerability',
'data_breach': {'data_exfiltration': 'Yes',
'number_of_records_exposed': '3 (Rhode Island residents)',
'personally_identifiable_information': 'Yes',
'type_of_data_compromised': 'Personal Information'},
'date_detected': '2023-10-03',
'date_publicly_disclosed': '2023-10-03',
'description': 'A data breach incident involving Sony Interactive '
'Entertainment where an unauthorized actor exploited a '
'vulnerability in Progress Software’s MOVEit transfer '
'platform, leading to unauthorized downloads of personal '
'information.',
'impact': {'data_compromised': 'Personal Information'},
'references': [{'date_accessed': '2023-10-03',
'source': 'California Office of the Attorney General'}],
'threat_actor': 'Unauthorized Actor',
'title': 'Sony Interactive Entertainment Data Breach',
'type': 'Data Breach',
'vulnerability_exploited': 'Progress Software’s MOVEit transfer platform'}