The good news – if there is any, Infosecurity notes – is that the hack appears to have nothing to do with the Sony PlayStation Network or the Sony Entertainment Network, which have both been seriously compromised in recent weeks.
"We know you're not supposed to kick somebody when they're already down – but we just found a live phishing site running on one of Sony's servers", said Mikko Hypponen, F-Secure's chief research officer in his latest security blog.
The phishing attack, he says, is running on sony.co.th, the home page for Sony Thailand.
"And here's a phishing site running under hdworld.sony.co.th, targeting an Italian credit card company", he noted
According to Hypponen, basically this means that Sony has been hacked, again.
"Although in this case the server is probably not very important," he said, adding that he has notified the Japanese company.
"We have also received unconfirmed reports about a new phishing campaign, asking people to reset their Sony PSN password. We're still investigating this."