Sony server said to have been hacked to host credit-card phishing site


This article was originally on a blog post platform and may be missing photos, graphics or links. See About archive blog posts.

A Sony server has been hacked to host a website for an alleged phishing scam targeting an Italian credit card company and its users, according to the web security firm F-Secure.

‘We know you’re not supposed to kick somebody when they’re already down ... but we just found a live phishing site running on one of Sony’s servers,’ F-Secure wrote in a blog post on the hack.


The security breach appears to be unrelated to the attacks that took down Sony’s PlayStation Network and Qriocity music service, the San Jose-based security company said.

However, it is yet another example of how the Japanese tech giant is struggling with security.

The attacks on Sony’s online services that affected PlayStation and Qriocity users resulted in exposure and possible theft of personal data for more than 90 million customers.

Sony Chief Executive Howard Stringer apologized for the attacks, which resulted in the PlayStation Network and Qriocity being shut down on April 20, with a partial return on May 14 -- though many parts of the PlayStation Network, such as the PlayStation Store, still aren’t fully up and running as they were before.

The Web server used to host the phishing site is normally used to host Sony’s Thai site, F-Secure said, adding that it believes that the hack only affected a server that has no access to Sony customer’s personal information.

F-Secure said it has notified Sony of the attack, later blocking the URL for the phishing site. Sony officials were unavailable for comment on the matter on Friday morning.



Sony flips the switch back on for PlayStation Network

Sony CEO apologizes for PSN hacks, offers ID-theft insurance

Sony says hacker may have stolen information from more than 90 million user accounts

-- Nathan Olivarez-Giles