A “gray hat hacker” known as “idahc”, who self-identifies as a Lebanese hacker, managed to hack Sony Europe’s Database of Application Store and posted the information on the Internet.
The hacker claims to have used a simple SQL injection to gain access to credentials for 129 user accounts, including username, password and email.
Here a proof of the hack shared by The Hacker News
He states in a interview,
I think Sony did not have a team of computer security consultants, simply. They produce Internal Sites like hotcakes. The databases are not protected. No encryption. They have much, but then a lot of servers, websites, which means there will always be flawed. Nothing is 100% secure.
Few days back, Sony Pictures was hacked by LulzSec, gaining access to the information in over 1 million user accounts. Sony has contacted the U.S. Federal Bureau of Investigation and are working together to track down the hackers.
Sony Europe’s website is now currently down for “scheduled maintenance”.