Sony websites hacked once again: 1 million accounts, databases stolen

[James]

Sony websites hacked once again: 1 million accounts, databases stolen

Hacker group claims gigantic breach of Sony websites; Sony is investigating

 

[Weasley]

Hopefully Sony start to improve there security now. Else there will not be a ps4 or any thing Sony left

 

[Orihalcon]

Really? You gotta be kidding me! If this was another hack that disrupted PSN etc for no other reason than the hackers being a bunch of idiots my post would read a lot differently...

So. Well done to LulzSec for hacking Sony (wait! don't rage quit on me yet) and then making them aware of the issue. Though I do not know how smart it was to tell the whole world the exploit as some other group can now perhaps to the same before it is fixed and do some damage with said knowledge - though the databases being uploaded would have same effect I suppose.

Now to my actual point - HOW can the data NOT have been encrypted! That is super sloppy Sony! I think you almost deserve this :-/

The fallout from this will be bad I suspect.

 

[Toxin]

These guys need to stop their shit now. Hopefully Sony anticipated this and have people working on finding these morons.

 

[myjdjames]

hectic stuff. Forget about Sony in particular. Their competitors must be quite happy that the name of this giant is being diminished so badly. CAnt pay for this kind of marketing.

 

[MarcosCOB]

Really Sony, Really? You would think after the PSN fiasco they would of thought to first secure everything else sony related before that gets attacked too.

 

[Kiruna]

maybe I've been watching to much 24 lately, but is there a chance they set the hackers up to try and catch them? Baited.
Wouldn't that just be too awesome if it were to happen.

 

[matt]

 

[MarcosCOB]

[Pic]

Hahahaha

And yeah, would be pretty cool if they were baiting them. But baiting them with a million accounts? Thats quite a bit of work.

 

[OmegaFenix]

These guys need to stop their shit now. Hopefully Sony anticipated this and have people working on finding these morons.

Check out the latest Extra credits over at the escapist, they have a really awesome episode about this.

 

[TheAvenged87]

My biggest concern here is that Sony is investigating it...meaning they knew of nothing happening.

This can mean various things:
1. These hackers only said that they hacked Sony, because Sony so far knows nothing about the attacks apart from a few tweets. I am only speculating here, but it could be the case.

2. Sony's network security manager is not doing his job (still just speculating). I work in IT and I know that scaling a massive database puts strain on a network. If no one notices that much activity going on (especially right after a massive attack that shut down its online gaming platform), something is wrong there. This could also mean that the attack never actually took place.

That was all pure speculation. What I do know is that these hackers might be really good with doing this, but they don't think their plans through. Hack Sony and then what? Sony won't shut down, they make tons of money from other aspects that are completely unrelated to gaming. TONS. The only people that really suffer here are users of PSN...they were unable to play online for like a month and their personal data was scaled. Basically, these assholes are actually just attacking PSN users.

 

[donatello]

LOL... I'm never buying anything Sony again! Or not until they sharpen up their security... Weird how nothing bad ever happens to the xbox eh? hehe

 

[Voicy]

This is not a good year for Japan so far...

 

[Necuno]

Why don't they just setup a proper honey pot system...

 

[matt]

I'll keep using PSN, but I'm not trusting them with my credit card details, and I'm sure most other people won't either, and that'll hurt their revenue for years to come

 

[Scooby_Doo]

Some one is going to get fired, what did Sony do\say that everyone wants to take a shot at hacking them?

 

[Orihalcon]

Good question Scooby.

@TheAvenged87: You make a valid point. The fact the posted the data they stole already would point to the fact that they actually succeeded...unless they are hoaxing everyone with data they posted. I somehow doubt it. What's more is the glaring error and simple hack method. It's so simplistic that it makes sense. Something small can usually be overlooked.

Hey. I will be the first person to admit I was wrong when this all turns out to HAVE been just a joke, but for the moment I am throwing my hat in the ring saying this is true.

Really wondering what will happen next. Considering the nature of the data...that can and will have serious consequences if this DOES prove to be a legit.

 

[axon1988]

Maybe sony did this on purpose so they can find the hackers? Everyone leaves a trace specially when you hack into a sql database. So this to me says that Sony had a brainstorming about this and figured they'd do something like this...
The other thing that doesn't make sense to me is the encryption... SQL's got a basic encryption built in when you create a database. So I don't quite understand, and why steal music coupons... REALLY? Music coupons?

 

[Blackhand]

Its legit. I'm a software dev(should be no secret by now), so I spread the news around to a couple colleagues at the office this morning. HILARITY ensued.

I have no sympathy for Sony. SQL injection vulnerabilities are on the same level as "blank password" vulnerabilities, you can secure yourself against it 100% at no extra cost and its entirely your fault for not being secure. It was simply a matter of someone trying, no doubt it was the very first thing they tried.

 

[to0kenZA]

Wow! This is actually starting to get ridiculous now?!

These okes are making a really bad name for themselves...I mean..anonymously? :S