PlayStation site hackedagain..
|
Author |
Message |
demonchild
Thinks Zinga Up To Something
Posts: 1,185.3522 Threads: 132
Joined: 23rd Mar 2008
Reputation: -4.56241
E-Pigs: 97.4501
|
PlayStation site hacked
Source : http://www.sophos.com/pressoffice/news/a...ation.html
Quote:Visitors to Sony PlayStation website at risk of malware infection Hackers use SQL injection and scare tactics to grab consumers' credit card details
Researchers at IT security firm Sophos have warned lovers of video games that pages on the US-based Sony PlayStation website have been compromised by hackers.
Experts at SophosLabs™ have discovered that cybercriminals have successfully used an SQL injection attack to plant unauthorized code on pages promoting the PlayStation games "SingStar Pop" and "God of War". At the time of writing the hacker's code attempts to dupe web surfers by running a fake anti-virus scan and displaying a bogus message that their computer is infected with a variety of different viruses and Trojan horses.
The hackers' aim is to scare unsuspecting computer users into purchasing a bogus security product. Sophos warns, however, that it would be trivial for the hackers who have compromised the webpages to alter the payload so that it became more malicious, and installed code designed to turn Windows PCs into a botnet or to harvest confidential information from users.
"There are millions of video game lovers around the world, many of whom will visit Sony's PlayStation website regularly to find out more about the latest console games. Most would never expect that surfing to a website like this could potentially infect them with malware. If users do not have sufficient protection in place then they might find that before they know it they have been scared into handing their credit card details over to a bunch of cybercriminals," said Graham Cluley, senior technology consultant for Sophos. "It is essential that all websites, especially when they are high profile like this or receiving a large level of traffic, have been properly hardened to prevent hackers from injecting malicious code on to what should be legitimate webpages."
Sophos customers are automatically protected against the threats (which Sophos identities as Troj/Iframe-AG and Mal/Badsrc), and users of other vendors' products are advised to update their software.
|
|
02/07/2008 12:33 PM |
|
Kaiser
The Average Lucky Bastard
Posts: 2,512.2567 Threads: 296
Joined: 13th Apr 2007
Reputation: 0.38918
E-Pigs: 43.7138
|
RE: PlayStation site hacked
good thing is i never visit that site.
COLEGIOOOOOOOOOOOOOOOOOOOOOOO!!!!!!!!!!!!!!!!!!!!!!
FEEL THE POWER \(m)/ (@_@) \(m)/
Vi Veri Veniversum Vivus Vici
|
|
02/07/2008 12:43 PM |
|
roberth
Resident Full Stop Abuser.....
Posts: 4,580.2098 Threads: 200
Joined: 18th Jun 2007
Reputation: -5.5814
E-Pigs: 43.8419
|
RE: PlayStation site hacked
Its really not going well for Sony is it...
|
|
02/07/2008 12:46 PM |
|
YoYoBallz
L4YoY0s
Posts: 6,057.4567 Threads: 644
Joined: 3rd Mar 2007
Reputation: 15.01961
E-Pigs: 13327.7533
|
RE: PlayStation site hacked
Once again Sony fails hard.
Good thing I never go there or buy things from sony directly
<Myth0s> i love boys
-------------------------------------------------------------------
I Go To Earth When Mars Is Boring.
-------------------------------------------------------------------
¿ʞɔпɟ əɥʇ ʇɐɥʍ I was first EPerson to have upside down title.
-------------------------------------------------------------------
(This post was last modified: 02/07/2008 01:55 PM by YoYoBallz.)
|
|
02/07/2008 01:55 PM |
|
.:ʕΘЯg@nʔ:.™
Elite EPerson
Posts: 1,613.1974 Threads: 235
Joined: 14th Apr 2007
Reputation: 3.87089
E-Pigs: 67.0595
|
RE: PlayStation site hacked
anyone remember me telling people not to give sony there CC#,, Anyone
|
|
02/07/2008 02:04 PM |
|
SchmilK
Noob
Posts: 4,698.2833 Threads: 359
Joined: 16th Apr 2007
Reputation: 0.38918
E-Pigs: 82.0546
|
RE: PlayStation site hacked
.:ʕΘЯg@nʔ:.? Wrote:anyone remember me telling people not to give sony there CC#,, Anyone
Yeah dude!!! Only the Sony Store near my house has ever had my credit card pass through their system to buy my Aibo 2 years ago...and that card is no longer active :)
Maybe if security were spelled $e¢urity $orny would $pend more time keeping things $e¢ure.
limneosgreen Wrote:Take my advice, don't try to install custom themes ... it's possible to brick ur psp.. why just don't change wallpaper
|
|
02/07/2008 03:36 PM |
|
maxexcloo
Paradigmatic Entity
Posts: 165.2391 Threads: 15
Joined: 15th Feb 2008
Reputation: 1.94271
E-Pigs: 29.9650
|
RE: PlayStation site hacked
Sony really is failing. Epically.
|
|
03/07/2008 12:22 AM |
|
ZiNgA BuRgA
Smart Alternative
Posts: 17,022.2988 Threads: 1,174
Joined: 19th Jan 2007
Reputation: -1.71391
E-Pigs: 446.1274
|
RE: PlayStation site hacked
And I thought only n00b coded scripts were vulnerable to SQL injections...
|
|
04/07/2008 01:18 AM |
|
Assassinator
...
Posts: 6,646.6190 Threads: 176
Joined: 24th Apr 2007
Reputation: 8.53695
E-Pigs: 140.8363
|
RE: PlayStation site hacked
Chicken Strips Wrote:And I thought only n00b coded scripts were vulnerable to SQL injections...
And you never thought wrongly.
|
|
04/07/2008 02:51 AM |
|
User(s) browsing this thread: 2 Guest(s)