Hacker steals 2,000 records from Sony Ericsson website

25 May 2011

Sony’s web security woes are continuing with the news that a hacker has stolen 2,000 customer names and email addresses and has published 1,000 of them online. No other data has been published.

The hacker, known as Idahc, is understood to have found a programming error – known as an SQL injection flaw – in the Canadian Sony Ericsson eShop.

Following the recent cyber attacks that saw more than 100m Sony PlayStation Network, Qriocity and Online Entertainment users affected and the sites taken offline, Sony has been working to rebuild trust with its online audience.

Since the sites have been restored there have been at least two more attacks on subsidiary sites in Greece and Thailand.

Sony is understood to have disabled the e-commerce website affected in the latest attack by Idahc.

John Kennedy is a journalist who served as editor of Silicon Republic for 17 years