So, Sony has been hacked AGAIN. This is why I'm happy I don't own a PS3, even though it wasn't the PSN this time. Rather, it was sonypictures.com. The group known as Lulzsec (lulzsecurity.com) compromised more than 1 million user accounts. An additional 75,000 music codes and 3.5 million coupons were also uncovered.LulzSec says that all of the information it took was unencrypted.
"Sony stored over 1,000,000 passwords of its customers in plaintext, says the hackers' press release, "which means it's just a matter of taking it. "What is truly sad about this is access to the main Sony site was granted via a simple SQL injection. A very, very basic tactic.
Is anyone monitoring online security at Sony? Most say this is only the second attack but it is actually the third.
1)PSN hacked
2)PSN password reset page hacked
3) sonypictures.com hacked.
In any account this really shouldn't have happened in such a short time.
More info on this occurrence, other occurrences, & Lulzsec
Info on SQL injection - SecuriTeam - SQL Injection Walkthrough
No comments:
Post a Comment