The flood of sensitive information coming out of the recent cyber attack against Sony Pictures seemingly knows no bounds. Nearly half a dozen unreleased Sony films hit piracy websites in the wake of the security breach but now, the nefarious attackers who refer to themselves as the Guardians of the Peace have published a wealth of personal data associated with both former and current Sony employees.
Data-security firm Identity Finder LLC recently combed through some 33,000 documents leaked as a result of the attack. What they found was quite alarming: salaries, social security numbers, home addresses and more on over 47,000 Sony employees including big Hollywood celebrities like Sylvester Stallone, director Judd Apatow and Australian actress Rebel Wilson.
Identity Finder noted that much of the information was found in non-password protected Excel files.
A joint investigation between Sony, the FBI and security firm FireEye revealed that the malware used in the attack was created on a machine with Korean language settings during Korean peninsula normal business hours. It was very similar in design to malware used against South Korean banks and TV stations a year ago, sources said.
Sony is reportedly offering affected employees a free year of credit monitoring and fraud protection. What’s more, Sony’s lawyers are said to be trying to get links to the sensitive data removed from various websites but as the Wall Street Journal notes, once something like this his file-sharing networks, it’s virtually impossible to scrub from existence.