Jul -- News: Sony, hackers, SQL injection, 1 million passwords in plaintext

Creature of Chaos
Level: 141

Posts: 4083/5929
EXP: 33605239
For next: 514775

Since: 07-03-07

Pronouns: she/her
From: Foxglen

Since last post: 21 days
Last activity: 10 hours

Posted on 06-03-11 05:06:02 PM (last edited by Waffle Ryebread at 06-03-11 02:08 PM)

Link | Quote


	Originally posted by Gabu I have a Playstation 1 The way things are going, it's just a matter of time before someone figures out a way to extract your personal information from that, too. ____________________

Gabu

Star Mario
Placeholder Ikachan until :effort: is found
Level: 172

Posts: 6242/9981
EXP: 67992444
For next: 109790

Since: 08-10-09

Pronouns: they/them, she/her
From: Santa Cruisin' USA

Since last post: 56 days
Last activity: 4 days

Posted on 06-03-11 05:17:39 PM

Link | Quote

That will be motherfucking miracles territory at that point, though.

Data: Has played a pirated game on here several times

(I have since failed utterly at trying to get pirated games to work on my PS1. tl;dr need that mod)

____________________

— Bloodstar —
11360

Buy me a trip to the moon
So I can laugh at my mistakes

Post 8806/11363

Joined 07-06-07
Active 1 day ago

Posted on 06-03-11 07:32:54 PM

Link | Quote

Originally posted by Gabu
First off, thank God I don't have a Playstation 3 (I have a Playstation 1 ). Because I'd be super pissed off at Sony by this point and would seriously consider permanently off-lining my console.

And second, we already know Chris-Chan's personal information.

Or you could always do what I did, and sell it off.

Granted, I did that about a year ago...

____________________

1428 Days

8806 Posts

31233060 EXP

429921 EXP Next

5320 EXP per post

7.904 seconds Idle Time

Overall Ranking: 7

devin

Yoshi
i'm mima irl
Level: 112

Posts: 2162/3519
EXP: 14932558
For next: 405647

Since: 04-29-08

Pronouns: any
From: FL

Since last post: 306 days
Last activity: 3 days

Posted on 06-03-11 08:17:36 PM

Link | Quote

So who has the better name, LulzSec or GoatSec?

____________________

Photo by Luc Viatour

Aerakin
Ye Olde Layout
Level: 98

Posts: 2381/2550
EXP: 9476260
For next: 178093

Since: 07-06-07

From: From the future

Since last post: 8.0 years
Last activity: 1.2 years

Posted on 06-04-11 12:21:53 PM

Link | Quote

Originally posted by Cool Timpani
Originally posted by CB
but it is hurting more people than what they needed too.

Hacks don't hurt people, poor security does.

If a door lock is of poor quality and an intruder comes into my home, it's not his fault?

Poor security isn't helping, but please stop shifting responsibility. The hack is the one hurting people, no matter what the security was.

____________________
"Water is the best way to buy time" ~Day9

Lunaria

I took second place in the Pure Vanilla SMW Contest!

Moon Bunny! :3
Level: 139

Posts: 3839/5754
EXP: 32053357
For next: 414088

Since: 07-28-07

Pronouns: she/her
From: pile of fluff

Since last post: 6 days
Last activity: 6 days

Posted on 06-04-11 01:29:00 PM

Link | Quote

The difference though, is that the consumer can't really impact what security that is going to be used.

There always will be hackers, something you have to take in regard. Sure, the hacker is ultimately the one at fault, but the company is still the major problem. You can't get away from hackers, that's just how the world is like now. So when storing information like this you are responsible for it, and therefor, should at least have a decent level of security to protect it.

Sure, shit happens. But from the looks of it, they had next to no security to protect the information. Therefor, the ones at fault here is the company.

____________________
Luna won't you cry for me, I'm as lonely as I've ever been. I am forced back into the start, Is there any way to fix a broken heart?

MajesticLight
710

Level: 55

Posts: 703/711
EXP: 1257722
For next: 56467

Since: 04-15-10

From: Virginia

Since last post: 10.7 years
Last activity: 10.7 years

Posted on 06-04-11 07:42:16 PM

Link | Quote

I feel that, when you trust a company and give it information about yourself, included in that trust is a nonverbal promise that they will keep it safe. When that promise is broken, especially so easily, I feel that people have a right to be mad.

I guess an analogy would be if you gave a game to a friend, and then his backpack got stolen because he wasn't watching it closely. Sure, had the thief not stolen it, your game would be safe and sound. However, when you loaned it to your friend, there was a nonverbal agreement that he would keep it safe. His lax protection of your game is almost as bad as the thief stealing it.

____________________

FieryIce

Luigi
Level: 119

Posts: 2677/4161
EXP: 18759052
For next: 170239

Since: 12-18-08

From: Chicago

Since last post: 189 days
Last activity: 3 days

Posted on 06-05-11 03:37:08 PM

Link | Quote

Well ... Sony Europe has been hacked now

150 accounts compromised. Not nearly as severe, but terrible nonetheless. I wonder who's in charge of their security. :specialed:

When it rains for Sony, it pours for Sony. And it seems that Sony is currently caught in a deluge: A hurricane of hacks, if you will. The thirteenth hack on a Sony database has been reported by Sophos' Naked Security blog, allegedly netting a single hacker 120 user names, passwords, mobile phone numbers, work emails, and websites from a user database on Sony Europe's site.

The attacker, dubbed "Idahc," claims to have used a standard SQL injection attack to get his hands on the database, which he promptly released to the world via Pastebin document. The passwords were allegedly stored as plain text within Sony's database, a pretty big no-no as far as the world of enterprise security is concerned.

"If you are a database administrator (especially a Sony one) and want to avoid your sensitive data from ending up in the headlines I recommend you actually test your web applications for SQL vulnerabilities," wrote Sophos' Chester Wisniewski.

The pseudonym "Idahc" might sound familiar. It should: The Lebanese attacker is the same person who recently broke into Sony Ericsson's Canadian e-commerce site. This breach in a Sony site or server–the fifth, for those keeping score at home–was also the result of an SQL injection hack.

CB

Flippitty Flip
Level: 90

Posts: 1979/2280
EXP: 6979110
For next: 209499

Since: 02-01-11

From: Canadaland

Since last post: 10.5 years
Last activity: 10.4 years

Posted on 06-05-11 09:16:51 PM

Link | Quote

Wow, does Sony store everything in plaintext? i'm starting to feel a little insecure.

____________________
Protip, never copy the entire page source code into your post header. Ever.

Liliana
"A horrible person". That's what it says. "A horrible person."

We weren't even testing for that.

Level: NaN

Posts: 2832/-3841
EXP: NaN
For next: 0

Since: 07-23-07

Since last post: 10.3 years
Last activity: 10.1 years

Posted on 06-05-11 09:18:52 PM

Link | Quote

I guess they can't afford people who ever heard of "security".

____________________

Nicole

she's more meow now than man, twisted and evil

Disk-kun
Level: 146

Posts: 4104/6469
EXP: 38286244
For next: 227050

Since: 07-07-07

Pronouns: she/her
From: Boston, MA

Since last post: 78 days
Last activity: 1 day

Posted on 06-05-11 09:20:12 PM

Link | Quote

Originally posted by Liliana
I guess they can't afford people who ever heard of "security".

At this point, I can't help but wonder if any Sony site doesn't have the potential for similar attacks. And Sony is quite a large conglomerate...

____________________

FieryIce

Luigi
Level: 119

Posts: 2679/4161
EXP: 18759052
For next: 170239

Since: 12-18-08

From: Chicago

Since last post: 189 days
Last activity: 3 days

Posted on 06-05-11 10:03:45 PM

Link | Quote

Well, I don't have any accounts with Sony at all, so this doesn't worry me.

But they seriously should rethink their security measures (if any).

Mike
I'M THE BADASS, THANKS!
-cpu

(The admins have spoken. It's time for you to go.)
Level: 25

Posts: 33/118
EXP: 82091
For next: 7529

Since: 02-09-11

Since last post: 10.2 years
Last activity: 9.8 years

Posted on 06-06-11 12:48:31 PM

Link | Quote

Originally posted by FieryIce
Well, I don't have any accounts with Sony at all, so this doesn't worry me.

But they seriously should rethink their security measures (if any).

Well, the way I see it is this, if they want to stay in the VG business for the next 4 years and try to out do Nintendo and Microsoft.
They highly need to reconsider alot of stuff where the customer is concerned, fucked up price repairs, security screw ups, and trying not to make the customer angry over the phone, wether it was their fault or yours.

I like sony to extent where I will buy some games they bring out during the year, however my nerves are wearing out against them because they can't do simple shit correctly.

Even Nintendo with their strict policys on certain stuff you can't do to your wii or ds, will be more than happy to help you if you broke your console, and are willing to pay for repairs they see fit.
Nintendo sometimes doesn't even bother to ask how it got broke, the only thing they understand is you pay for minor repair costs and we will help you.
Nintendo and MS will either tell me to take it to repair shop if they feel the damages aren't serious enough with a email sent to the store.

____________________

Lunaria

Moon Bunny! :3
Level: 139

Posts: 3840/5754
EXP: 32053357
For next: 414088

Since: 07-28-07

Pronouns: she/her
From: pile of fluff

Since last post: 6 days
Last activity: 6 days

Posted on 06-06-11 01:05:22 PM (last edited by Karis at 06-06-11 10:06 AM)

Link | Quote

Originally posted by Mike
I like sony to extent where I will buy some games they bring out during the year

IIRC, sony don't develop their own games.

Not to mention they are not a gaming company first most, it's just a division they had since Nintendo gave them the finger back with that joint project.

____________________
Luna won't you cry for me, I'm as lonely as I've ever been. I am forced back into the start, Is there any way to fix a broken heart?

Mike
I'M THE BADASS, THANKS!
-cpu

(The admins have spoken. It's time for you to go.)
Level: 25

Posts: 34/118
EXP: 82091
For next: 7529

Since: 02-09-11

Since last post: 10.2 years
Last activity: 9.8 years

Posted on 06-06-11 01:24:21 PM

Link | Quote

Yes, I already knew that part since 1993 since I was a teen, but lets face it, sony wants to be a big game maker.
So they are fucking with nintendo non-stop to the point it's not even laughable anymore.
At any given point during the next six months, who do you think is going to end up in the poor house ?

Quanity (sony 1994) vs Quality (nintendo since 1969) ?

____________________

CB

Flippitty Flip
Level: 90

Posts: 1990/2280
EXP: 6979110
For next: 209499

Since: 02-01-11

From: Canadaland

Since last post: 10.5 years
Last activity: 10.4 years

Posted on 06-06-11 09:53:06 PM

Link | Quote

Originally posted by Mike
Yes, I already knew that part since 1993 since I was a teen, but lets face it, sony wants to be a big game maker.
So they are fucking with nintendo non-stop to the point it's not even laughable anymore.
At any given point during the next six months, who do you think is going to end up in the poor house ?

Quanity (sony 1994) vs Quality (nintendo since 1969) ?

Atari.

____________________
Protip, never copy the entire page source code into your post header. Ever.

Viola

Level: 34

Posts: 175/228
EXP: 234147
For next: 19504

Since: 09-03-09

From: ??

Since last post: 8.1 years
Last activity: 4.8 years

Posted on 06-07-11 12:49:15 AM

Link | Quote

By that logic (sound as it sounds), Sony has basically become the Gary Oak of game companies. It treats that which brings it success with no respect, demanding results so it can defeat Nintendo.

____________________

Darker, hotter Captain N

Peardian

Magikoopa

16/3/1: KvSG #479 is up!

Level: 157

Posts: 4886/7597
EXP: 48604790
For next: 974443

Since: 08-02-07

From: Isle Delfino

Since last post: 11 days
Last activity: 23 hours

Posted on 06-07-11 12:55:37 AM (last edited by Peardian at 06-06-11 09:57 PM)

Link | Quote

I'd feel sorry for Sony if they didn't have the entire time the PSN was down to realize that all of their security was exactly the same and thus in danger. There's probably a reason they waited until the network went back up to hack them again.

Edit: @Viola: Didn't you read the wiki? Sony is Gary.

____________________
-Peardian-

"Kindness is the language which the deaf can hear and the blind can see." -Mark Twain
Galaxy Complete!

Gabu

Star Mario
Placeholder Ikachan until :effort: is found
Level: 172

Posts: 6263/9981
EXP: 67992444
For next: 109790

Since: 08-10-09

Pronouns: they/them, she/her
From: Santa Cruisin' USA

Since last post: 56 days
Last activity: 4 days

Posted on 06-07-11 01:14:41 AM

Link | Quote

I'm calling it. Gary was a metaphor for Sony this whole time.

____________________

Register - Login
Views: 99813315	Main - Memberlist - Active users - Calendar - Wiki - IRC Chat - Online users Ranks - Rules/FAQ - Stats - Latest Posts - Color Chart - Smilies	05-03-22 05:02:02 PM

Query execution time:	0.111907 seconds
Script execution time:	0.035567 seconds
Total render time:	0.147473 seconds