Sorry Sony wonks, heave a collective sigh, shoulders slumped, heads down, and brace for more bad news: Sony’s been hacked again.
Citing the Wall Street Journal, Reuters reports an intruder broke into So-Net, an Internet service provider subsidiary of Sony Japan, and made off with over $1,200 in virtual points from account holders.
Note, importantly, that this isn’t PlayStation Network, Qriocity, or Sony Online Entertainment related (So-Net says it can’t rule the possibility out, but that it’s low). In fact I’d never heard of So-Net until now, though that doesn’t make it any less dreadful as questions of corporate competence go.
An official statement on the site (in Japanese) explains So-Net has terminated exchanges of points, and asked customers to change their passwords. The story translator says the total lost was “about 100,000 yen,” or $1,224. Google’s translation of the site reads that as “approximately 10 million yen,” or $122,384, which is probably why we shouldn’t trust Google Translate.
Here’s the odd bit: So-Net admitted the site had been accessed thousands of times from the same IP address, which looks an awful lot like a brute-force password attack (very different from the attack on the PSN and SOE). Why didn’t So-Net throw up a block, you know, at around 100? My web host kicked my IP address to the curb for screwing up twice. IP spoofing at work? Perhaps.
As info-leaks go, So-Net says it can’t yet confirm any personal data was stolen. If it was, information obtained would be similar to that exposed in the mid-April PSN network hack, including names, addresses, birth dates, and phone numbers.
To recap, the good news: not the PSN or SOE. The bad news, still Sony corporate, and this time, the hacker(s) made off with actual cash.