Cyber Incident Victim: Sony

On August 20, 2017, the hacker group OurMine compromised Sony’s official PlayStation Twitter and Facebook accounts, posting messages claiming a breach of the PlayStation Network (PSN). The group announced via these hijacked accounts that they had accessed PSN registration data, including usernames, names, and email addresses. Screenshots captured by users showed OurMine’s tweets before Sony regained control and deleted them. OurMine representatives later clarified they obtained only registration information and intended to share it with Sony to demonstrate security vulnerabilities, not publicly release it. Sony did not publicly confirm or deny the data breach but swiftly re-secured its social media accounts, removing all unauthorized posts. The incident disrupted Sony’s official communications channels temporarily, though PSN’s operational status remained unaffected during the social media compromise.

The attack formed part of OurMine’s broader pattern of targeting high-profile entities to promote their self-described security services. While claiming to act as a “security group” testing defenses, OurMine leveraged the Sony incident to publicize their capabilities, consistent with their history of hacking organizations like HBO, Netflix, and NFL teams. Sony issued no formal statements regarding the breach’s validity or potential user data exposure. The group’s intrusion methods were not detailed in available sources, but their unauthorized access to Sony’s social media credentials enabled the disruptive announcements. No subsequent data leaks or financial impacts were confirmed, aligning with OurMine’s stated intent to withhold stolen information. The incident highlighted ongoing vulnerabilities in corporate social media management amid OurMine’s repeated targeting of major brands throughout 2016–2017.