Sony disclosed a ransomware attack around 26 September 2025, where threat actors RansomedVC and MajorNelson breached internal networks, leaking 3.14 GB of sensitive corporate data. The attackers claimed access to confidential product development files and employee information. While Sony confirmed ongoing investigations, they reassured customers and partners that core consumer services remained unaffected. This incident revealed the persistent security challenges faced by global electronics giants and the rise in dual extortion ransomware attacks involving data leakage alongside encryption. The Sony breach serves as a warning about the sophistication and persistence of cybercriminal groups using ransomware for financial gain and information theft.
