Anonymous "SONY, I AM DISAPPOINT"

Was it really Sony's fault? Things like this can happen. It really shouldnt and is very bad PR and clients trust in systems etc, but thats the reality of things.

I also entirely agree with:

The concept of a press release being issued by what is essentially a non-organisation is a little confusing
Click to expand...

Anon is starting to act rather strangely of late, and they are opening themselves up to fake copy cats of sorts. e.g the Anonymous Message for South Africans a while ago.
 
MrG said:
Was it really Sony's fault? Things like this can happen. It really shouldnt and is very bad PR and clients trust in systems etc, but thats the reality of things.
Click to expand...

This point:

In order to process credit cards, every company needs to be PCI compliant. "If you are a merchant that accepts payment cards, you are required to be compliant with the PCI Data Security Standard". Since Sony's network was "unpatched and had no firewall installed", that is a clear violation of the PCI standards and ongoing reviews, thus likely to be criminal negligence [see Further Reading]. More importantly, "I can't think of a major data breach where the company was PCI compliant," said Ira Rothken, the lead attorney handling the class action lawsuit [6].
Click to expand...
 
HavocXphere said:
From what I heard yeah. Sounded like their security was seriously weak.
Click to expand...

Even so, dont you have to have you credit security check by the bank services regularly so to aviod thing like this? If there network never got tested by a bank and wasnt PCI compliant as the article stated... Would Sony not getting thier license to use credit cards on the network revoked?
 
MrG said:
Ah. I was under the impression it was an internal job. Maybe I confused my stories momentarily.
Click to expand...

I am starting to believe that too, its too much things to have gonewrong in such a short time, somebody let someone in, ore made people aware of the flaws in the network...
 
ZAP_Tech said:
I am starting to believe that too, its too much things to have gonewrong in such a short time, somebody let someone in, ore made people aware of the flaws in the network...
Click to expand...

Doesn't matter. As already posted, see below.

In order to process credit cards, every company needs to be PCI compliant. "If you are a merchant that accepts payment cards, you are required to be compliant with the PCI Data Security Standard". Since Sony's network was "unpatched and had no firewall installed", that is a clear violation of the PCI standards and ongoing reviews, thus likely to be criminal negligence [see Further Reading]. More importantly, "I can't think of a major data breach where the company was PCI compliant," said Ira Rothken, the lead attorney handling the class action lawsuit [6].
Click to expand...

As a PCI approved company, it is your utmost responsibility to ensure the safety of that data - both from within and out.

Sony can suck a fat one for all I care.
I hope their PCI license gets revoked and they burn in the firey aftermath that is lawsuits upon lawsuits and customer distrust from here on out.
 
You must log in or register to reply here.
Back
Top