Sony Reports Another Hacker Attack
By
Arcanaville,
Posted on: 2011-05-24 10:32 in Comic and Hero-Villain Culture
You do realize that it doesn't matter how good of security Sony has at the moment these hackers are going to get through. All a hacker needs to get through any security is time and persistence. Again, the only people to blame for this crap is the hackers which is likely Anon.
Quote:
Except it seems during the security review of the downtime, they didn't check their OTHER non PSN and SOE websites to make sure they were secure.
|
Originally Posted by Durakken
You do realize that it doesn't matter how good of security Sony has at the moment these hackers are going to get through. All a hacker needs to get through any security is time and persistence. Again, the only people to blame for this crap is the hackers which is likely Anon.
|
Blazara Aura LVL 50 Fire/Psi Dom (with 125% recharge)
Flameboxer Aura LVL 50 SS/Fire Brute
Ice 'Em Aura LVL 50 Ice Tank
Darq Widow Fortune LVL 50 Fortunata (200% rech/Night Widow 192.5% rech)--thanks issue 19!
Quote:
Cause all their resources were tied up in SoE and PSN I imagine.
|
Originally Posted by Aura_Familia
Except it seems during the security review of the downtime, they didn't check their OTHER non PSN and SOE websites to make sure they were secure.
|
Yeah from what I've been hearing, Sony had very poor protection on PSN and SOE servers. Maybe some of these hackers could get past even high end security, but at least then Sony could say there was really nothing they can do.
Anonymous has been denying involvement as well, so who knows.
"Where does he get those wonderful toys?" - The Joker
Quote:
I don't think it's Anonymous, they do things like this for the lulz and therefore prefer defacing to stealing info (unless they're then going to post it on Pastebin), not to mention that they'd claim credit if they'd done it.|
Originally Posted by Ice_Wall
Yeah from what I've been hearing, Sony had very poor protection on PSN and SOE servers. Maybe some of these hackers could get past even high end security, but at least then Sony could say there was really nothing they can do.
Anonymous has been denying involvement as well, so who knows. |
And for those of you thinking that it's an elaborate double-bluff, you're wildly overestimating the intellect and attention span of the average Anonymous contributor
Omnes relinquite spes, o vos intrantes
My Characters
CoX Chatlog Parser
Last.fm Feed
Aint the reason they did it in the firstplace because of the PS3 Jailbreak thing? If so I support the hackers. Sony think they are too high and mighty and need to be brought down a peg. If the hackers are doing it for the 'lulz' then it's a bit out of order
Quote:
Anonymous do everything for the lulz, if it happens to coincide with an actual "cause" then it's a bonus |
Originally Posted by _gohan661_
Aint the reason they did it in the firstplace because of the PS3 Jailbreak thing? If so I support the hackers. Sony think they are too high and mighty and need to be brought down a peg. If the hackers are doing it for the 'lulz' then it's a bit out of order
|
Omnes relinquite spes, o vos intrantes
My Characters
CoX Chatlog Parser
Last.fm Feed
Anon did some DoS attacks on Sony, that were in retaliation for the crackdown on the creators of a PS3 jailbreak. Right after that Sony announced the big PSN hack, and so people have conflated the 2 events. But I don't think Anon did the big PSN hack, or this one. They typically do DoS attacks and defacing, not outright theft. Although there is of course a first time for anything.
Quote:
Yes, and putting customer's identities at risk for fraud is the best way to teach Sony a lesson.
|
Originally Posted by _gohan661_
Aint the reason they did it in the firstplace because of the PS3 Jailbreak thing? If so I support the hackers. Sony think they are too high and mighty and need to be brought down a peg.
|
@Rylas
Kill 'em all. Let XP sort 'em out.
Quote:
Well, here's the thing. If a hacker goes and steal the customer info to publicly expose Sony's lax security, and then deliberately never does anything with it, what happens?|
Originally Posted by Rylas
Yes, and putting customer's identities at risk for fraud is the best way to teach Sony a lesson.
|
The customers get a little scared but ultimately nothing happens to them.
Sony get a massive public relations nightmare and possibly stands to lose a massive amount of money from lost customers and whatever legal assessments are levied against them.
Remember, despite the massive amounts of customer info stolen, so far we've not seen any significant reports of proportional mass identity fraud stemming from it.
-np
I see myself as witty, urbane, highly talented, hugely successful with a keen sense of style. Plus of course my own special brand of modesty.
Virtue: Automatic Lenin | The Pink Guy | Superpowered | Guardia | Guardia Prime | Ultrapowered
Quote:
That being the operative phrase. |
Originally Posted by NinjaPirate
so far
|
In any event, somebody is going to profit by that information somehow. Unlike the joker in Dark Knight, my faith in humanity wont be let down.
------->"Sic Semper Tyrannis"<-------
Quote:
Except you realize that in virtually all cases of super hackers breaking supposedly impenetrable security, it turns out to be something trivially stupid that lets them in. *Decent* security and proper training against social engineering would keep out 99.99% of all the supposed hackers out there.|
Originally Posted by Durakken
You do realize that it doesn't matter how good of security Sony has at the moment these hackers are going to get through. All a hacker needs to get through any security is time and persistence. Again, the only people to blame for this crap is the hackers which is likely Anon.
|
Worth noting: stuxnet the nuclear superworm probably reached its primary target via social engineering: lax security for thumb drives. If a really powerful hacker group wants to get you, it would take incredible security to keep them out: the APT attack against RSA is I believe an example of such an attack. It was possible but very difficult to defend against - but it too hooked itself into the network via social engineering.
Anonymous' attack against HB Gary? Social Engineering.
The thing is there are only so many people competent enough to spend six months trying to crack good security. So if I implement good security protocols and good training, the only people that can get me are people who probably have better targets to get.
The people who say perfect security is impossible also don't seem to realize there are some really juicy targets out there that would be the feather in anyone's cap but no one has come close to getting. Its just not that easy when there are no social engineering vectors to gain leverage with, and there are some places where social engineering doesn't work. Sometimes because people are very well trained, and sometimes because they shoot you, limiting the number of times you can attempt the same attack.
[Guide to Defense] [Scrapper Secondaries Comparison] [Archetype Popularity Analysis]
In one little corner of the universe, there's nothing more irritating than a misfile...
(Please support the best webcomic about a cosmic universal realignment by impaired angelic interference resulting in identity crisis angst. Or I release the pigmy water thieves.)
When somebody breaches Walmart's servers and makes it know, THATS when we really need to worry.
Many people don't know that Walmart has some serious computing power and data at their disposal. And hundreds of millions of credit card numbers and names to go along with them.
Quote:
Hah, good point, but Walmart doesn't seem to inspire nerd rage like Sony does. If/when your scenario comes true, you can bet someone hacking Walmart is definetely into it for criminal gain.
|
Originally Posted by Samothrake
When somebody breaches Walmart's servers and makes it know, THATS when we really need to worry.
Many people don't know that Walmart has some serious computing power and data at their disposal. And hundreds of millions of credit card numbers and names to go along with them. |
------->"Sic Semper Tyrannis"<-------
Quote:
Walmart can inspire plenty of rage, I assure you.
|
Originally Posted by ebon3
Hah, good point, but Walmart doesn't seem to inspire nerd rage like Sony does. If/when your scenario comes true, you can bet someone hacking Walmart is definetely into it for criminal gain.
|
Comrade Smersh, KGB Special Section 8 50 Inv/Fire, Fire/Rad, BS/WP, SD/SS, AR/EM
Other 50s: Plant/Thorn, Bots/Traps, DB/SR, MA/Regen, Rad/Dark - All on Virtue.
-Don't just rebel, build a better world, comrade!
Quote:
From both the customers and the associates!
|
Originally Posted by Smersh
Walmart can inspire plenty of rage, I assure you.
|
According to the last report I read, Sony are down 171 million US from these attacks and delays in implementing games for release and related online services. At the very least, I know for myself as a casual customer, I don't feel comforted by their supposed assurances.
S.
Part of Sister Flame's Clickey-Clack Posse
Quote:
Serious computing power is an understatement. We, yes I am a WalMart drone, have the 2nd largest computer network in the world, the pentagon is first.
|
Originally Posted by Samothrake
When somebody breaches Walmart's servers and makes it know, THATS when we really need to worry.
Many people don't know that Walmart has some serious computing power and data at their disposal. And hundreds of millions of credit card numbers and names to go along with them. |
Yes that title is not a joke.
Link: http://mashable.com/2011/05/24/sony-hacker-attack/
It seems nearly ALL of SONY's websites for music were vulnerable. Who wants to bet US is next?
/facepalm
Blazara Aura LVL 50 Fire/Psi Dom (with 125% recharge)
Flameboxer Aura LVL 50 SS/Fire Brute
Ice 'Em Aura LVL 50 Ice Tank
Darq Widow Fortune LVL 50 Fortunata (200% rech/Night Widow 192.5% rech)--thanks issue 19!