LulzSec release 62,000 e-mails and passwords - time to change your details

Yeah well.
If security is lax, then the boys will play I guess.

Just amazes me that even after all these events of the last few months, some gaming companies STILL don't give a rat's ass about security.
 
Anyone got their hands on those files?

It's my guess that anyone who has an account with BioWare/Sony/<insert most recently hacked company> would be interested in making sure their accounts haven't been compromised.
 
There were hackers before LulzSec, there will still be crap tons of hackers after them. Almost all of them operate quietly. Breaches happen ALL the time, LulzSec is just one of the few groups that likes to publicize their exploits. You think your information hasn't been stolen before? It has, you just didn't know about it. Half these companies security is so piss poor that its not a matter of them keeping quite about it, they don't even know the breach happened (they do keep quite about it as well make no mistake).

There are security standards that would cover basically every single method LulzSec used to breach into these systems. The standards are costly to implement, increase maintenance costs, add bloat to deadlines and make companies jump through a few extra hoops to get things done. Basically it cuts into profit margins. Most importantly, implementation of the standards is completely optional and not enforced. I'm sure you can figure it out from there.

The silver lining to this would be new laws clamping down on companies that hold personal information and the security standards become mandatory with steep consequences for skimping, otherwise it is never going to stop. Sure you won't hear about it, doesn't mean it won't be happening.
 
How difficult can it be?

Companies: Stop using passwords.txt and hash the damn things properly.
Users: Use a password manager.

Besides, any chop who uses the same pwd for forums and Facebook/WoW deserves to get nailed for stupidity anyway. Hell I reuse the same few passwords everywhere...except where it counts...banks, email, FB etc. So worst case scenario is all my forum logins crash & burn. meh
 
Meh, I change my passwords pretty often and make them difficult enough. It mainly annoys me that companies have been walked over by all this despite the obvious warning signs.
 
Back
Top