Apparently they store that information in unencrypted databases which is just asking for trouble. If I had stocks in Sony, whew, I'd sell.
Just as in the case of the X Factor imbroglio, the group uploaded the information stolen from Sony on the world’s largest BitTorrent tracker website The Pirate Bay. Lulzsec announced that the hack of the multinational corporation was a result of simple SQL injection, which is basically the most primitive and wide-spread vulnerability letting the intruders access everything. Lulzsec added that unfortunately all the information they compromised was not encrypted. In other words, the company simply stored more than a million of its customers’ passwords in plain text, so it was just a matter of taking it. Hackers called this “disgraceful and insecure”, saying that Sony were almost asking for the hack. Currently the Lulz security website is offline due to a DDoS attack. correct
