早前安全脉搏发布了《黑客组织GOP公开索尼影业文件清单》,自称GOP(代表Guardians ofPeace)的黑客组织入侵了索尼影业的计算机网络,在索尼所有雇员的电脑屏幕上留了个黑页,放出了一个217.6MB大小的文件清单。

后来又放出了索尼5部未发行的电影:

《依然爱丽丝》:由Julianne Moore和Alec Baldwin主演,原预定美国上映日为2015年1月16日
《特纳先生》:由Timothy Spall主演,原预定美国上映日为2014年12月19日
《安妮》:由Jamie Foxx和Cameron Diaz.主演,原预定美国上映日为2014年12月19日
《狂怒》:由Brad Pitt主演,美国上映日为2014年10月17日(已在中国上映)
《卿手写爱》:原预定美国上映日为2015年3月

sony_pictures_dump_data_27G

本周一GOP再放大招,在Pastebin上面匿名放出了27GB索尼数据,目前已经被pastebin删帖了,不过可以通过谷歌cache查看。

Gift of GOP: Internal data of Sony Pictures

sony_pictures_dump_data

 

You can download a part of Sony Pictures internal data the volume of which is tens of Terabytes on the following addresses.
These include many pieces of confidential data.
 
1. Torrent
http://ge.tt/3p1kNn52/v/0
http://rghost.net/59369171
http://rmdown.com/link.php?hash=143957dc0a804eb8c282f33988eb9096974fc3761c9
http://netload.in/dateiSwxiU7G1ec/spe_01.torrent.htm
 
2. Mega
https://mega.co.nz/#!xdhhkTQZ!CKmW8uopwiTdPTyZUpevV5AZEruvn6A9bM_JY61WCxU
https://mega.co.nz/#!8VJQFQpA!ZpwADEJuiUFkw1IUPxGIbm-kVo1DKBju4E7j7yvaLsU
https://mega.co.nz/#!dYZxzDYY!raWSpOt8edi1QKX4BWBAZdsk4AhbueEjbMoywSH6DqU
https://mega.co.nz/#!NIpXXTZT!A64xf2txxK1UEuVXyvJuTw8EAJXizhN9MIocNUDKN-I
https://mega.co.nz/#!AcA2WJCb!mtYWrhoFkPW8hjQ-FQ7LWtr22F0GYJBQdL-I9R13MfU
https://mega.co.nz/#!9YI2xJAY!wgGTgfIoX-Nq6SVKgzfOpthDgIjXo2IYWtHN4axU1aY
https://mega.co.nz/#!NIIWnTCQ!reJIpOqcoH5-EZakv4rgv7GlRGX20WU9Tm4HF9Us9-g
https://mega.co.nz/#!hUh0gLYB!gDwngdZz7WF8j7ZOE-UfNJ3AHsYraSZ8tqZblsnkr44
https://mega.co.nz/#!pVYBXLiB!k7esotBlG8ZEQ7xzCElR56-4PPcHiHiIEk6uNOTybS8
https://mega.co.nz/#!sUZjEBBI!FsaYxpP1r5iKRIzk6bnxjSCICwRx_Um2-xaIOQlHUIg
https://mega.co.nz/#!VR4mVTSZ!vP-xzWbaWFm3fAiOruUC79pOSR9Y0OPxGz5zWA3f_Hw
https://mega.co.nz/#!xFQmhCaD!NWCd6OHaGjWG8F1kRpQ3K-UEj1rzhB3dDDo7O0FUV5U
https://mega.co.nz/#!4JBRlDAT!woCzt__gM3Qdoe30RlVyI2_LtA2A1ZO3RwuN3yqRzcA
https://mega.co.nz/#!EAJgSaSR!yAG5lpAvY3ASSa6Vp4CTWZqrkn8RHcz7hmM8lG0VLwI
https://mega.co.nz/#!UQJyTKZY!AUMwS0hSRFzwL4_wwN03HlWbA5p6iVCka-icwdPr9WE
https://mega.co.nz/#!8Ap2FS4B!eR_dBPwUW71PKegbl90wuYh9aO3DPnF7ub1dFy_nlgw
https://mega.co.nz/#!lIABABgR!cCuQw67KSqFXh96MM2aUwQ_F6UugQsatrJkKAXwOISA
https://mega.co.nz/#!0NJRkSrD!Fcs8cVaVcBl_ECRGxvUvuy-qrj7q8uRiJa_hGqoW-h8
https://mega.co.nz/#!5RYmxbRD!i8Lx7ZIxystcrOOQhnCYRpLI0qz_YfTDW1wYOho1O9U
https://mega.co.nz/#!VVZ3BBqC!2goJGqvFrdNr_Na6B_Ye4ML1NUTNsn5Vc3UpU6mgx8Y
https://mega.co.nz/#!8dxC3Ywb!YDWl-IFSmzeQPSznCy9jZ2gg25LPZf9FuLWdwBPxw9Y
https://mega.co.nz/#!McwUnAwC!7_212qKuejeBm9Mb1IRuwSFLbgEdSM-e3gCoZhbRG1w
https://mega.co.nz/#!ABYSST7A!xFgmjNZQ4Gk-FjvHJ69DxM4AVkfzMQZNDUgQcBVec5Y
https://mega.co.nz/#!AIpziK6b!hBphnqhtP0BiT_qfvRCGYzm1J2Gz6mdN9tZu_H_9q74
https://mega.co.nz/#!pJ4iTKTB!rEfgW8UkIo6CgkJTVsm5KQpna2uVJxMtDlBvudAiaLw
https://mega.co.nz/#!RdgUxbxA!-RQgfQyRTRkcexw5eVPOHIKAM7-VA3y0rASSm1QT2mM
 
3. Rapidgator
http://rg.to/file/30e20ec0354f21dddfc808f744d8211b/spe01.part01.rar.html
http://rg.to/file/bbd9856588cc0e944791a78383e15afd/spe01.part02.rar.html
http://rg.to/file/74a48cd9ef7f8dcabd964497b47d709f/spe01.part03.rar.html
http://rg.to/file/5fbfd1906be22fe19e650006c3feab4d/spe01.part04.rar.html
http://rg.to/file/63b61ae41fd63958c3c401926780d082/spe01.part05.rar.html
http://rg.to/file/8fd06b1253d51aafe9d11a879a1d6ded/spe01.part06.rar.html
http://rg.to/file/3d284809a7840cd23f1ba1f3456656be/spe01.part07.rar.html
http://rg.to/file/38357ff187580add12ff19994d729ce8/spe01.part08.rar.html
http://rg.to/file/609beec12fb8aaabb6d059be9b050004/spe01.part09.rar.html
http://rg.to/file/4972f10c74e36a3fe7b25a6fcefbe8df/spe01.part10.rar.html
http://rg.to/file/639f5e5fbb5c243ea85aca19b1746283/spe01.part11.rar.html
http://rg.to/file/4a360483bb1187b39e42a723d8070fdf/spe01.part12.rar.html
http://rg.to/file/e212b1d5c3a90bc01c2d7108a9e30cab/spe01.part13.rar.html
http://rg.to/file/b8217637b6d49b30c71ad08eae78c899/spe01.part14.rar.html
http://rg.to/file/8f2d12d6907506bcc7572b216605c877/spe01.part15.rar.html
http://rg.to/file/23f206f6391ae5dc8d4b628b12818c3d/spe01.part16.rar.html
http://rg.to/file/7ada421019f6f3e01107abfe285883e9/spe01.part17.rar.html
http://rg.to/file/ea3a481fb2a119e7d31eda209ee0f085/spe01.part18.rar.html
http://rg.to/file/616fd6f89df4d6578e0f73c42a9d1554/spe01.part19.rar.html
http://rg.to/file/6f4133dfb5cee0caf2ba714c66352094/spe01.part20.rar.html
http://rg.to/file/d3427464755217fc4e262cf9e59508de/spe01.part21.rar.html
http://rg.to/file/8f6d83fb732571dafc6f33b43753687f/spe01.part22.rar.html
http://rg.to/file/de9dc968a3cfd71b88b90888a8010855/spe01.part23.rar.html
http://rg.to/file/0920d84bc2775aa1ac79a1199f929a86/spe01.part24.rar.html
http://rg.to/file/7b4689fc6c46159c26f72fe0ddd42bcf/spe01.part25.rar.html
http://rg.to/file/10bb73cd0c964ca60659ade8c045f1fa/spe01.part26.rar.html

其中包含索尼员工名单,员工id,工资,社保号等很多私密信息。文档结构戳这里

pwc-sony

filesfromsony

此前索尼怀疑其内网遭朝鲜黑客攻击,因为索尼公司此前拍摄了刺杀金正恩为题材的电影《TheInterview》,这部电影的演员包括罗根(Seth Rogen)和弗兰克(JamesFranco)。两人扮演两个记者,被美国中情局招募,被要求执行行刺朝鲜领导人金正恩的任务。
今年初,朝鲜政府曾经抨击索尼这部电影,称其为“战争举动”,并表示,如果电影如期上映,朝鲜方面将会发动“坚决而无情的反击”。

上述电影《TheInterview》,将于12月25日圣诞节档期在美国上映,攻击事件后,上映时间并未作出调整。一旦影片供应,朝鲜方面将会有何种激烈反应,将引人关注。

有关是否来着朝鲜的攻击尚未证实,也只是猜想,FBI已经介入了sony事件的调查,目前还没有具体消息。

           Sony Pictures Entertainment has hired Mandiant incident response team of FireEye Inc to help clean-up the damage caused by the huge cyber attack on its network,
which forced its employees to put pen to paper over the last few weeks.

索尼影像娱乐公司甚至雇佣了我们一直看好的FireEye公司应急团队Mandiant来清理此次巨型攻击危害,帮助朔清来源。

2011年索尼影像就发生过攻击事件,当时泄露了超过100万的用户数据。

相关参考链接:

  1. sony-pictures-hack
  2. sony-pictures-movies-leaked
  3. strange_things_afoot_with_great_sony_pictures_torrent_data_leak
  4. sony-breach-may-have-exposed-employee-healthcare-salary-data

【27G spe解压密码是:diespe123】

安全脉搏将会持续跟进此次攻击事件~

 

 

源链接

Hacking more

...