Another Sony website got hacked today. The information of 2000 customers was stolen through the website of a Canadian Sony Ericsson webshop. A lebanese greyhat hacker used a so called SQL injection hack in order to get access to Sony’s customer database. The Sony Ericsson shop sells mobile phones and accessories.
The greyhat hacker has published approximately 1000 customer records online. Through twitter, the hacker informs people that he has also found a table with credit card information, as well as the administrator’s name and password.
SQL injection… unencrypted passwords and full credit card numbers in an online database. Seriously… how careless does Sony get?!?!
