Zero Day

Ryan Naraine and Dancho Danchev

Sony Europe hacked by Lebanese grey hat hacker

By Dancho Danchev | June 4, 2011, 9:38am PDT

Summary: A grey hat hacker known as idahc, has managed to compromise Sony Europe’s Database of Application Store.

A grey hat hacker known as idahc, has managed to compromise Sony Europe’s Database of Application Store.

The SQL injection hack has revealed 120 credentials, including the username, password, mobile, office, email, and website of the affected users — all in plain text. Last week, the same hacker has once again managed to compromise ca.eshop.sonyericsson.com, with the hacker claiming that he had the ability to extract credit cards data, but didn’t do it since he doesn’t perceive himself as a black hat.

Kick off your day with ZDNet's daily e-mail newsletter. It's the freshest tech news and opinion, served hot. Get it.

More from “Zero Day”

'Hot Lesbian Video - Rihanna and Hayden Panettiere' scam on Facebook leads to Mac malware

Hackers exploiting Flash Player XSS vulnerability

Topics

Sony Corp., Web Site, Web Site Development, Web Technology, Microsoft SQL Server, Security, Databases, Internet, Enterprise Software, Software, Data Management, Dancho Danchev

Dancho Danchev is an independent security consultant and cyber threats analyst, with extensive experience in open source intelligence gathering, malware and cybercrime incident response.

Full Bio
Disclosure
Contact

Vendor HotSpot

Here to help you with your Document Management Needs

Read the DocuMentor blog now

Learn More »

Talkback Most Recent of 16 Talkback(s)

Follow via:: RSS; Email Alert

This is so cool

All because Sony messed with Geohot, they've unleashed the wrath of so many hackers, albeit on a small scale.
General C#
4th Jun
- Reply to
- Flag
Is that the reason? No one has claimed that is the reason.

@General C#
Though people like Geohot should be taken to court if what they have done was illegal.

We can not live in a world where threats of violence allows others to take that which is not theirs.
Mister Spock
4th Jun
- Reply to
- Flag
Actually, they have

@Mister Spock
Before the whole hack attack started, they said they were going to do it because of how Sony was manipulating the legal system to infringe on the rights of someone doing something COMPLETELY LEGAL. all frigid did was allow the PS3 to acces the underlying Linux kernel. That in and of itself not only isn't illegal, but doesn't allow those who do it to do anything illegal (such as pirating).
45yoyos
4th Jun
- Flag
RE: Sony Europe hacked by Lebanese grey hat hacker

@45yoyos

No, he also found and released the Master Bluray Encryption Key if I am not mistaken... A service to which I and many other Honeycomb users are grateful!
Peter Perry
4th Jun
- Flag
Thank You, 45yoyos

@Mister Spock

As I had not realized that.
Mister Spock
4th Jun
- Flag
RE: Sony Europe hacked by Lebanese grey hat hacker

@Mister Spock

They basically gave users back a feature that was originally listed on the box for the PS3. They decided to pull support at some point later with mandatory firmware updates. It was total crap.

The hackers aren't acting under anyone's orders or request. They're doing it because Sony screwed over many PS3 users. I knew a few people who were using them as web servers a few years ago.
LiquidLearner
4th Jun
- Flag
RE: Sony Europe hacked by Lebanese grey hat hacker

@Mister Spock

Sony is using economic violence against Geohot. He is just a young guy. He doesn't have the kind of money to defend himself against Sony in court despite the fact that he has not done anything illegal. Because Sony is using economic violence against Geohot, I think it is totally justifiable that hackers use economic and public relations violence against Sony in retaliation.

However, you are correct about it not being proven that that is the reason they are attacking Sony. But if it is the reason then I'm all for it.
josh92
4th Jun
- Flag
RE: Sony Europe hacked by Lebanese grey hat hacker

@Mister Spock Yes we can.
Tommy S.
5th Jun
- Flag
that't where using proprietary software leads to

@General C#
sony must renew its pledge to OSS and standards and APPLY them!
Linux Geek
5th Jun
- Reply to
- Flag
RE: Sony Europe hacked by Lebanese grey hat hacker

I don?t suppose I have read anything like this before. buy high pr backlinks So nice to find somebody with some original thoughts on this subject
Amanda123456
22nd Aug
- Reply to
- Flag
RE: Sony Europe hacked by Lebanese grey hat hacker

LOL... I just have one question, and it is this:
Poll: How many times will Sony be hacked?
Link: http://www.wepolls.com/r/547067

I've got $20 that says they get hacked during E3!
zadocpaet
4th Jun
- Reply to
- Flag
Reaping what they sow

@zadocpaet

No bet. Sony's woes are just beginning. I bet they get hit again and have to take down the PSN during E3.
wolf_z
5th Jun
- Reply to
- Flag
RE: Sony Europe hacked by Lebanese grey hat hacker

Good.
james347
5th Jun
- Reply to
- Flag
RE: Sony Europe hacked by Lebanese grey hat hacker

Awesome
MrElectrifyer
5th Jun
- Reply to
- Flag
RE: Sony Europe hacked by Lebanese grey hat hacker

the hackers are hurting the little guys .. sony has money to back themselves up but what about us little guys .. do we have any rights not to get hacked to death?
jktz122
9th Jun
- Reply to
- Flag