Playstation website infiltrated, hackers stealing credit card details

IT security firm Sophos recently released a news article stating that the PlayStation website has been infiltrated by hackers. Hackers are reportedly using the infiltration to try and steal important credit card details from users. Phish for more details in the full article.

IT security firm Sophos recently released a news article stating that the PlayStation website has been infiltrated by hackers. Hackers are reportedly using the infiltration to try and steal important credit card details from users.

Experts from SophosLabs discovered that hackers were successfully able to use an SQL injection attack to plant unauthorized code into pages promoting Singstar Pop and God of War.

As of the writing of the news release, it seems the attack attempts to dupe people into thinking there’s a host of viruses on their computer, and subsequently scaring them into “buying” antivirus software. Sophos does warn, however, that the attackers could inject a more malicious payload into the system.

Notes Graham Cluley, senior technology consultant for Sophos,

There are millions of video game lovers around the world, many of whom will visit Sony‘s PlayStation website regularly to find out more about the latest console games. Most would never expect that surfing to a website like this could potentially infect them with malware…. It is essential that all websites, especially when they are high profile like this or receiving a large level of traffic, have been properly hardened to prevent hackers from injecting malicious code on to what should be legitimate webpages.

Via Sophos