Sony hacked, personal information posted – what’s new?

Looks like the threat of a hacking group came good, with databases under Sony’s wing getting hacked – again. Sony’s online properties in Thailand, Greece, Japan, it doesn’t really matter, they are all not safe under the prying eyes and dancing fingers of the hackers. It seems that the latest attack targeted Sony’s databases which were used to operate sonypictures.com, sonybmg.nl, and sonybmg.be, having been compromised by Lulz Security (LulzSec for short).

The latest hack was accomplished via SQL injection, and for the uninitiated, this is a rudimentary technique which depends on improper handling of website URLs. This is a definite black eye for Sony, since being susceptible to SQL injection should be a hole that shouldn’t have been there in the first place especially when preventive techniques are already well known and a snap to apply.

To make matters worse, personal information such as date of birth, plaintext passwords, and e-mails have been retrieved and posted. We wonder just what kind of countermeasures are Sony going to take in the light of recent events.