Non of the Sony hacks are advanced. Just the same old SQL injection since Sony won't patch their Apache servers.
I. Third Sony Database Breached
This week a poster dumped a pretty interesting archive to text sharing site pastebin. The record appears to contain a dump of the user database from Sony BMG in Greece.
Included in the post are usernames, real names, and email addresses.
The post was eventually attributed to The Hacker News, who says they received the information from a hacker who goes by the handle "b4d_vipera". The hacker appears to have redacted the information from certain fields, including password, telephone number, and user's company, though they claim to have this information.
In total 8,385 records were lost from SonyMusic.gr -- the website of Sony BMG in Greece. The breach occurred May 5.
The attack was accomplished via an SQL Injection attack, a type of attack that first originated around 2005. SQL Injection attacks are most commonly used on large entities with multiple websites. The attacker finds SQL databases on various sites of the target and then tests them by sending strings that may be mishandled by the SQL Interpreter, allowing forbidden commands to be executed.