Another attack on Sony

This time the Sony BMG Greece website was attacked, a database containing logins, e-mails and real names of registered users was stolen.


Chester Wisniewski, senior security adviser at Sophos, today announced that the invasion was carried out through the use of SQL injection, which allowed attackers to inject malicious code on the Sony BMG Greece website.
')
Visneski believes that SQL injections were used that searched for vulnerabilities on the site.

“Actually, it’s all like the old school hacking,” said Vishneski. “I was quite surprised to learn that Sony had overlooked, considering how easy it was to detect.”

He added that to conduct such an attack you do not need to have serious hacking skills.

UPD.

On Thursday, So-net was hacked, $ 1200 worth of virtual tokens were stolen.

On the same day, F-Secure reported that it had found a phishing site hosted on a Sony server in Thailand.