Sony’s security woes are not over

SOMETIME ONLINE GAMING FIRM Sony is still not out of hot water as the security firm F-Secure has spotted a phishing attack nestled away in its web pages.

As well as having had a major outage to its online services, Sony has seen hackers walk away with the personal details of up to 100 million of its users. It has also seen the password reset update designed to resolve its problems potentially vulnerable to more attacks and taken it offline. In addition it has seen its reparations package blasted and today has been forced to explain that neither a Playstation 3 firmware update nor the must-have LA Noire game is causing systems to overheat.

It's been a bad month for the Japanese company, but while Sony might have thought the worst was behind it this is unlikely. The eyes of the world are on the gaming firm and what it does now will come under scrutiny.

F-Secure's Mikko Hypponen said in a blog post, "We know you're not supposed to kick someone when they are already down... but we just found a live phishing site running on one of Sony's servers."

The security firm found the phishing attack running on Sony Thailand pages that Hypponen said "has nothing to do with the Sony PSN hack", however it does aim to steal information belonging to Italian credit card customers. Though apparently quite a niche attack, "this means that Sony has been hacked, again", according to the post.

F-Secure is also investigating a phishing attack designed to target those people looking to reset their Sony online passwords. µ