Sony Phishing
Sony Phishing. Capping off a week that saw Sony disable logins across some of its PlayStation Network properties thanks to a password exploit, F-Secure identified a phishing site running on one of Sony's servers.Today's incident, however, "has nothing to do with the Sony PSN hack," F-Secure's Mikko Hypponen wrote in a blog post.
"We know you're not supposed to kick somebody when they're already down ... but we just found a live phishing site running on one of Sony's servers," Hypponen said. "Basically this means that Sony has been hacked, again. Although in this case the server is probably not very important." Hypponen posted screen shots of the official homepage of Sony Thailand, as well as a phishing site using the URL hdworld.sony.co.th (above), which appears to target an Italian credit card company.
He notified Sony of the problem and later tweeted that "I can confirm that Sony has just minutes ago cleaned their site and removed the phishing site from hdworld.sony co.th."
When asked via Twitter if the site was hosted on Sony's servers or just a DNS hijack, Hypponen said it was hosted on Sony's servers.
This latest problem comes days after Sony started putting its PlayStation network back online after an extended downtime. It hasn't been completely smooth sailing; an influx of users trying to change their passwords prompted Sony to temporarily halt the process earlier this week; the password exploit later took down log-ins, but Sony denied it was a new hack.
via yahoo