Gaming Hack-A-Thon

With everyone’s favorite new sport: hacking video game company sites. Rapidly becoming the “it” thing to do among some hacking groups, this week brings in a slew of different break-ins:

On the Sony front, Sony Portugal was reported to be hit by a Lebanese hacker that infiltrated their databases using, you guessed it, another SQL injection method. The hacker left behind a message stating simply:

“I am not a black hat to dump all the database I am Grey hat”

[Thanks Gurthang!]

In Spain, authorities have also arrested 3 people they suspect to be involved in the attack that took down PSN.

Two third-party publishers were also hit recently: Codemasters and Epic Games. Both companies suffered some damage with Codemasters having some personal information of customers compromised. Epic Games fared better with only user accounts and passwords being accessed. They have since reset all passwords.

Finally, Nintendo Europe is facing a phishing threat and has shut down parts of its websites:

We have learnt of a possible phishing threat to users of the European Nintendo website which we are currently investigating. The protection of our customers is our utmost priority and so we have taken the precaution of immediately shutting down some parts of this website until further notice. We would like to reassure you that we do not hold our customer’s bank, credit card or address details on the European Nintendo website and so this data is not at risk.

Well, it certainly isn’t just Sony anymore.

Naked Security
New York Times