Sony remains high atop the hit list of the Anonymous hacktivist gang. The group said Friday that it is responsible for temporarily defacing the website and Facebook account belonging to Sony Pictures. Last last month, the collective posted a YouTube video warning it would retaliate against Sony for its support of the proposed Stop Online Piracy Act (SOPA), which critics say amounts to an internet censorship bill. Last June, Anonymous hijacked SonyPictures.com to steal the personal information on one million people.
Without the need for specialized audio equipment to conduct PIXHELL, threat actors could leverage social engineering and software supply chain attacks to distribute covert data exfiltration channel-triggering malware that would create an acoustic channel for the data.
Russian state-sponsored threat group Coldriver has been suspected by the Free Russia Foundation of being behind the intrusion, which involved the targeting of several entities to exfiltrate internal documents, grant reports, and other correspondences in retaliation against pro-democracy Russians
Simultaneous target infiltration and reconnaissance, network compromise, and data exfiltration activities have been performed by Clusters Alpha, Bravo, and Charlie, respectively.