Sony Kept Passwords in File Named “Password”

Sony Pictures Entertainment is being blamed for lax security at its corporate headquarters, including saving thousands of its passwords in a file labeled "Password," making it easy for hackers to gain access to employee files and social security numbers.

Sony was hacked earlier this week, with many alleging saying it was North Korean hackers wreaking havoc for the studio's film "The Interview" a comedy about trying to assassinate North Korean dictator Kim Jong Un, according to the Re/Code.  The hackers likely found a lot to take because apparently Sony's computer security was deemed inadequate, even by its own employees, Fusion reported.

Social security numbers and information on its employees and actors were rampant in the files, including those 47,000 employees, including actors Sylvester Stallone and Rebel Wilson.  Those social security numbers and personal information were not found in only one place, either, but in duplicated in numerous documents, PC Magazine reported. 

"The most concerning finding in our analysis is the sheer number of duplicate copies of Social Security numbers that existed inside the files," Identify Finder chief executive Todd Feinman said in a statement to PC Magazine. "In this instance, some SSNs appeared in more than 400 different locations, giving hackers more opportunities to wreak havoc." 

One of the worst instances of this laxity was Sony's use of a file directory labeled "Password" which included 189 documents, spreadsheets and other files containing the company's passwords and social media accounts. 

Contact Us