Sony Suffers Yet More Security Breaches 288
Oldcynic writes "As Sony struggles to restore the Playstation Network we receive news today of another breach, this time at Sony Ericsson in Canada. 'Sony Corp. spokesman Atsuo Omagari said Wednesday that names, email and encrypted passwords may have been stolen from the Sony Ericsson Canada website, but no credit card information was taken.'
Another group managed to penetrate Sony Entertainment Japan yesterday as well. I almost feel bad for them.
Was it really worth it, Sony? (Score:5, Insightful)
I've always said that Sony is the most control-freak tech company in the world (making even Nintendo and Apple look sedate by comparison), a company that would happily shoot itself in the foot rather than lose even an *inch* of control of it's media, it's IT, or its technology.
From the rootkit fiasco, their obsessive lockdown of blu-ray (which of course, was cracked), and (many) assorted other lawsuits--Sony has established itself as the kind of company who would happily put a spycamera in everyone's home to make sure that no one is watching a pirated copy of Spiderman 3 (though why anyone would want to watch even a free version of that or just about any other Sony movie is beyond me).
But now they've removed a little-used and fairly innocuous Linux feature from the PS3, and then busted a guy who jailbroke the machine in response. Not only did they send in thugs to kick his door down and take all his shit (then strongarm him into admitting guilt to something that, before the DMCA, wouldn't even be considered a crime), but they even went as far as to try to force ISP's to hand over the identities of everyone who even DISCUSSED the hack on his website or blog.
Well, was it worth it, Sony?
Re:Was it really worth it, Sony? (Score:5, Funny)
Sony has established itself as the kind of company who would happily put a spycamera in everyone's home
So THAT's what the PlayStation Eye is for!
Re: (Score:2)
now they've removed a little-used and fairly innocuous Linux feature from the PS3, and then busted a guy who jailbroke the machine in response
They actually removed that feature as a response to GeoHot announcing he was going to crack the PS3. But the end result is the same.
Re: (Score:2)
"The Doctor: People assume that time is a strict progression of cause to effect, but actually, from a non-linear non-subjective viewpoint, it's more like a big bowl of wibbly wobbly timey wimey... stuff. "
Understand that and you'll understand the Church of St. George and save yourself a bunch of karma.
Re:Was it really worth it, Sony? (Score:4, Insightful)
So instead of fixing their security issue they decided to steal value from consumers. What a wonderful company.
Re: (Score:2)
There "security issue" to get into the system wasn't known at that point, nor is there any way to realistically stop someone cracking DRM on any system in the long run. They just wanted to make it harder for him to do so. The types of managerial doofuses that pulled it probably even believed that they would stop him by doing so. I'm not saying that Sony is wonderful, I was just correcting the facts.
Re: (Score:2)
"They actually removed that feature as a response to GeoHot announcing he was going to crack the PS3."
They actually have never said anything of the sort. And let's be clear about what Geohot actually said, while we're at it: he wanted to modify OtherOS to take full advantage of the PS3's hardware rather than the limited set it could use as released. So Sony *may* have removed OtherOS as a response to someone uncrippling it and making it somewhat useful, but there is zero evidence for this theory.
Re: (Score:2)
Zero evidence? [wikipedia.org]. It's not a 100% guaranteed link I suppose, but the timing and Sony's actions since make it 99.9999999999999% likely that was the reason.
Re: (Score:2)
...admitting guilt to something that, before the DMCA, wouldn't even be considered a crime...
There are indeed many things in life that were not illegal until they were.
Re:Was it really worth it, Sony? (Score:4, Informative)
...admitting guilt to something that, before the DMCA, wouldn't even be considered a crime...
There are indeed many things in life that were not illegal until they were.
That is actually a fundamental concept in law - whether one has inherent rights and law adds restrictions or whether one's rights are expressly granted by law.
Re:Was it really worth it, Sony? (Score:5, Insightful)
Carry on.
Re: (Score:2)
Yeah, it was a good bit when that happened in Sensational She-Hulk #5.
Re: (Score:2)
I still have not seen any shred of evidence that any of these attacks are in response to the removal of the other OS feature or the lawsuit against Geh0t(or whatever his handle was). I think if these attacks were retaliatory the people behind them would find some way of making that publicly and certainly known. It would do more for their cause.
Its just as likely possibly more likely that the first big attack on PSN was entirely opportunistic somebody spotted a hole and figured it was good change to get ho
Re:Was it really worth it, Sony? (Score:5, Insightful)
I wouldn't call it retaliation, per se. I'd more be inclined to describe it as a company that everyone who likes to "penetration test" sees as a fun target now. They pissed certain people off and made a certain amount of headlines and eventually they hit "critical mass" with the "hacker community". Sony keeps fixing things and the "testers" are having a good time showing the world that they are still vulnerable.
Sony is being forced to play a game where the other side has the better toolset.
Re: (Score:2)
Sony is being forced to play a game where the other side has the better toolset.
Kinda like a Sony memory stick vs industry standard SD card?
Re: (Score:2)
You know I can't say I am really bothered by these cyber-criminals. Its fun to have an Internet based on mob rule and vigilante justice. Keep some perspective, its only computer nobody really gets hurt.
Re:Was it really worth it, Sony? (Score:4, Interesting)
but you have to realize: in a war, 'precise bombing' is not always possible.
if the hackers that are pissed off are just attacking sony any way they can, its not hard to imagine that others who 'touch' sony will also get hurt. ie, their users and customers.
I long ago stopped buying and supporting sony things. my way to fight back is to just stop buying. but kids today who think that sony is 'evil' in the most literal sense of the word might go to any lengths to seek revenge.
there IS a lesson here. the teenager who gets pissed off at the world and wants to seek revenge is not something you can directly fix. the way to fix the problem is stop pissing off your customers in the first place.
sony, culturally, probably won't understand a word of this. I expect the 'war' to continue for quite a while.
gee, just like the 'grownups' kind of wars. just like it.
Re: (Score:2)
At this point, I expect that the computer crimes units of the respective countries will find the criminal assholes that are doing this and put them in prison where they belong. They are not doing this because they are fighting "The Man", they are doing this because they want to defraud and steal the money that other people have earned by an honest work. From your line of thought, you could also say that is no problem that death squads kill addicts in rehabilitation centers since the drug lords wouldn't have
Re: (Score:2)
Really, control over the stuff you have in your own house isn't an important issue?
Re: (Score:2)
Re: (Score:2)
On the contrary, the subtle difference is that one is merely individuals being injured or killed, while the other is the irrevocable destruction of the principle on which our society is based (i.e., sovereignty over personal property).
Re: (Score:2)
Yes It's important to me that is why I make INFORMED decisions on buying things instead of being the typical consumer idiot that listens to what the sales guy at Best Buy says. It's why I dont have a bluray player at all. I rip blurays on my computer and play them from a XBMC PC.
Re: (Score:3)
Well, yes and no. You see, there are two lists going on here. The first list is "stuff that's important." On this list you'll find things like "peace in the Middle East" and "harmony among the planet's many ethnicities". Or things like "democracy in every country" (which may include the U.S. depending on your perspective).
On the second list, there is "stuff that is important but that I can actually do something about right now." Unless you live in Libya or another country currently undergoing a rebelli
Re:Was it really worth it, Sony? (Score:5, Informative)
>>>>>If someone could resurrect the innovative Sony of the mid-to-late '70s
>>
>>Sony has always just been the 'reliable brandname' on equipment from a company big and powerful enough to roll in the innovations that other entities have pioneered in.
I believe you're mistaken.
Sony is the company that invented videocassettes (Umatic and Betamax). Sony is the company that invented Betacam. The 3.5 inch floppy. The Compact Disc. Rewritable magneto-optical discs. THAT'S the company the grandparent poster was talking about when he said "innovative".
Re: (Score:2)
(vs. obviously less remarkable recent times; who cares about MD, miniDV, DVD, DVcam, HDV or Bluray)
Re: (Score:3)
Hate to say this, but Apple is the new Sony. Steve jobs will as much as admit it. He loved Sony like we all did back in the day of Trinitrons and Walkmans. They made GORGEOUS hardware.
Great article discussing just that here [sfgate.com].
"Alan Deutschman, Reynolds professor of business journalism at University of Nevada-Reno and author of "The Second Coming of Steve Jobs" -- the definitive unauthorized biography of the Apple CEO -- notes that from his early twenties on, Jobs had a fascination with Sony that bordered on obsession.
[...]
"At the time, Sony was committed to not releasing a crappy product just because the market was there; they waited until they had a truly revolutionary innovation, combine
Re: (Score:2)
Nope.
Samsung TV's... garbage. their Serial control protocol was written by idiots. Oh and reliability is in the toilet.
Samsung Digital cameras - Garbage, low end garbage.
Samsung Blu Ray players - rebadged LG.
Samsung Phones... can we make a flip phone that does not have connection ribbon problems please?
From my experience, Samsung is lower in quality than LG, that company that used to be Goldstar.
Re: (Score:2)
Just my opinion of course but I really believe they are heading in the right direction lately.
Re: (Score:2)
In every post I like to put in at least a little bait for autistic grammar nazis. It's how I trap you--so I can use your obsessive attention to trivial detail to power my secret island compound.
Look behind you. I think you'll find escape is impossible.
Again? (Score:2)
Re:Again? (Score:4, Insightful)
More likely a lot of separate individuals/groups who want to join in on the Sony bashing trend.
Re: (Score:2)
Somewhere out there, there's an army of hackers with a world map and a bunch of pins. Also, an intense dislike of Sony.
FTFY.
Sony pissed off exactly the wrong people. Many many many times over. They've had this coming for awhile.
Disclaimer: I am in no way affiliated with any said army. I am simply surmising based on the massive and intense hatred of sony amongst groups of people among whom I have several acquaintances. All for similar reasons, each with his/her own particular straw that broke the camels back. Recent events are really just fanning the flames of a fire sony had already started.
Re: (Score:3)
Disclaimer: I in no way agree with parent and fully support Sony with my money and first born child.
Re:Again? (Score:4, Insightful)
Why extract the database of users' information if your goal is only to give a slap in the face to the evil corporation?
It's almost as if the goal of this criminal activity wasn't heroic anti-corporatist hactivism at all...
Re: (Score:2)
Of course it isn't. That is one of the reasons that Sony in particular is being targeted however.
From what I can gather of the situation people that may not want to be involved in criminal activity are pissed off enough to help those that have no such qualms in some easily-denied way.
Basically, Sony has pissed off enough people that it has painted a large target on its back saying "Come get me". This has an effect of making Sony the largest path of least resistance for anyone with questionable morals.
Did they piss anyone off? Yes; Are they dumb? Yep. (Score:3)
The bad guys heard in the news, "Sony hacked -- Cause: Unpatched Apache web servers," and just realized, "Holy shit that's the dumbest thing ever! Sony is totally crackable; Let's go crack the other vulnerable Sony servers -- If they were dumb once, they were likely dumb all over the place!"
Granted, pissing off a bunch of hackers/crackers is not a smart move, but being known for having poor security practices is even worse.
Re: (Score:2)
I expect it's because simply destroying assets would only garner sympathy for Sony, whilst exposing customer data will undermine their credibility and customer faith, things which can't easily be replaced from backups or by installing new hardware. If attackers are successful in mounting a prolonged attack, breaching Sony's systems on a regular basis, eventually they could erode all customer (and creditor) support, and the company could crumble.
Re: (Score:2)
It's very likely that this is a mix of hacktivism and actual crime. One disguises the other and both sides benefit from the confusion.
It's hard to feel bad for Sony or Sony's customers either way. Sony's customers are funding this kind of crap.
Re: (Score:2)
1. Greedy thieves hear about anon vs sony, launch an attack to steal valubles, and leave an anon was here note to keep the authorities and sony chasing 13 year old kids instead of coming after them
2. Activists realized actually harming the customers was bad for their message, takes information without using it to force sony to admit and apologize to a breach, without directly harming the users
3. Activists are launching DDOS and other attacks keeping securi
Re: (Score:2)
Indeed. People love railing against "The Man", but their lack of perspective as it pertains to the genuine victims (the users) is disgusting and despicable. Sony will come out unharmed (minus a couple million dollars), but there is going to a massive rash of identity theft which will empty private citizens bank accounts, destroy credit, and likely ruin lives.
But these jerks keep on like they're cheering on Robin Hood or something. The rich are well-insulated. The norms of the world will be bearing the real
Re: (Score:2)
Why extract the database of users' information if your goal is only to give a slap in the face to the evil corporation?
Because stealing user information causes a much bigger hit to Sony's reputation among the customers than, say, defacing their website?
Karma (Score:3, Insightful)
Re: (Score:2)
Re: (Score:2)
Anyone who chose to become a Sony customer in the last decade -- or at least since the rootkit fiasco -- should have known they would get screwed. By Sony, if nobody else.
I'm not saying the hackers are blameless, but is anyone really surprised at this?
Does anyone REALLY believe that even 10% of parents buying a gaming console for their child has any idea WTF the "rootkit fiasco" is? I think saying the average person "should have known" that an obscure event (yes, in the real world the rootkit fiasco is not on par with 9/11) burned into the memories of a small subculture that held onto it for years would eventually come back to hurting customers of that company is a little redic.
There will be no peace. (Score:5, Insightful)
Re: (Score:2)
You're probably right. After the initial attacks, the investigators have been there collecting evidence. The difference between Sony being the victim of a crime and the hackers committing crimes has significant ramifications. I expect that there will be a number of people who spend some time getting sodomized in federal prisons around the world followed up by the inability to ever hold a job in the IT industry, ever get any credit, ever hold a job of any trust, or ever accumulate any money as anything they
Security? (Score:5, Interesting)
They are just taking the same approach to Security, since they don't know what it is, why care about it?
does this expression require children be involved? (Score:2)
the fucking you get for the fucking you get.
Re:does this expression require children be involv (Score:5, Funny)
Agree. Sony has screwed more kids than the catholic church.
Re: (Score:2)
There's something oddly recursive about that statement.
Please subscribe me to your newsletter.
Re: (Score:2)
It's simple. A child could understand it.
Re: (Score:2)
The stop condition is "when a fucker that fucks someone that ain't fucked over anyone, in a particularly upsetting manner, in recent memory, gets fucked, the fucker fucking this fucker doesn't deserve to be fucked." It's simple. A child could understand it.
I'm glad you like the word "fuck"; However, it has clouded your logic. You just said: When someone who doesn't fuck any others has recently been brutally fucked, the person that fucked the innocent person does not deserve to be fucked.
In short: The Bad guys can hurt innocents, and the bad guys don't deserve any retaliation. I don't think that's anywhere close to a stop condition. I think that spawns a new train of fuckers fucking, or at least one new fucker, due to the revenge said innocent is likely
Plain text passwords.... (Score:4, Insightful)
"E-mail, password, and names of thousands of users were exposed via text file"
Why...why...WHY do people still insist on plain text passwords? Have these people ever heard of a hash? There is 0 reason ever to store a plaintext password, end of story. Anyone who designs a system that stores passwords in plain text should be fired on the spot.
Re: (Score:2)
Re: (Score:2)
Anyone who designs a system that stores passwords in plain text should be fired on the spot.
Off-topic: my bank asks for the Lth, Mth and Nth characters of my password, which is better than asking for the whole lot. Is it possible to have a system like that without storing the password encrypted (rather than hashed)?
Re: (Score:2)
Re: (Score:2)
Having just three characters of your password should not be able to determine its validity unless they are decrypting your password (vulnerability) or storing it as plain text (vulnerability).
There's a third possibility, Sony seems to operate at just the right level of clue to store each individual character in a separate column, although each individual character hashed of course for security reasons. (if you're reading this, and don't get the joke, please don't program anything using a password, unless you work at Sony, OK?)
Re: (Score:2)
You cannot encrypt a password both in transfer and on disk (unless you use a separately encrypted channel with separate authentication, but then why do you need a password?). For a lot of things it is more important that you can use the password to establish a secure channel than it is to store the password as a hash.
E.g. with the simple "ask for three specific characters from the password" method you gain almost-one-time-passwords, so a keylogger on a public terminal cannot empty your bank account afterwar
Re: (Score:2)
You also just reduced the length of the password to 3 chars. Nice and guessable. Even if it changes which three, you are increasing the odds of a collision.
Re: (Score:2)
Re: (Score:2)
If they changed which 3 characters for each failed attempt (and even successful attempts), with a timed lock out after X failed attempts, the odds decrease a bit. I'm not doing the math.
Re: (Score:2)
You cannot encrypt a password both in transfer and on disk (unless you use a separately encrypted channel with separate authentication, but then why do you need a password?)
Technically that's not true; take a look at some of the various password-authenticated key agreement [wikipedia.org] schemes out there. Unfortunately it appears to be a bit of a patent minefield...
Re: (Score:2, Informative)
Also from TFA, it says the passwords were "encrypted". What wasn't in TFA is the phrase "plain text" - that part YOU added. Way to get worked up over something that you formulated.
Re: (Score:3)
Why...why...WHY do people still insist on plain text passwords? Have these people ever heard of a hash? There is 0 reason ever to store a plaintext password, end of story. Anyone who designs a system that stores passwords in plain text should be fired on the spot.
I agree that saving passwords as hashes presents a much better security model, but you are just wrong to think that there is no reason to keep them in plain text.
The real world isn't quite so black and white!
1) It's "unfriendly" to require users to
Re: (Score:2)
If the passwords were properly hashed (with a good salt) and were strong enough such that a dictionary attack couldn't break them, you wouldn't have 'thousands' of leaks.
Pull the damn cables already! (Score:4, Insightful)
Re:Pull the damn cables already! (Score:4, Insightful)
I get the impression they're not even trying anymore.
Re: (Score:2)
I get the impression they're not even trying anymore.
If they were trying in the first place, we probably wouldn't be hearing about all these breaches.
Re:Pull the damn cables already! (Score:4, Insightful)
Seriously, how long until Sony head office just tells every department to yank their network cables until a full security audit is done? This is just embarrassing at this point.
What costs more, cutting off all online sales and hiring an audit team for X amount of time, or closing your eyes and ears reeeeeeeeeeally tight until everyone forgets about this in a couple months?
Er... hang on, let me clarify: What costs more in the short term, within the attention span of the CEO/CIO a modern multi-bazillion dollar megaconglomerate? Remember to factor in that "admitting we made a mistake" is a near-infinite cost in this case! If you never admit it, it never happened!
Pinkertons (Score:5, Interesting)
Re: (Score:2)
Or ruin other companies.
It's funny, the first time I read Neuromancer years ago everything in it seemed so far fetched. Sorry Mr. Gibson, it appears you were right on a number of things. Black hats may become a solution for everyone -- vigilantes, interest groups, corporations, criminals, ect. Why rob a bank with guns when you can combine hacking and social engineering to make money appear from nowhere and appear legitimate? If a politician's opponent is raising massive funds with a website, it can be taken
Re:Pinkertons (Score:4, Insightful)
I wonder if this rise in internet vigilante-ism is going to birth a corporate funded internet version of the Pinkertons. I.E. a group of black hat hackers paid by big corporations to hunt down and ruin groups like Anonymous through less than legal means.
I wouldn't put it past the entrenched powers to use whatever means necessary to get this done (ie, either digital brown-shirts, or burning down the commons through excessive and unconstitutional legislation that's been "purchased"). I'm guessing it'll be a combination of both, but in the short term, expect more of the "internet death sentence" type of reaction.
I do posit this is going to get much worse. Every day, it feels like the seemingly paranoid rants by RMS [gnu.org] seem more like the prophetic prognostications of a Cassandra who's seen the future hoping to help us avoid it.
Re: (Score:2)
That worked out real well for them.
Almost feel bad for them (Score:5, Insightful)
Feel bad for them? The fuck? "They" are a corporation, whose only reason for existence is to make money. Sure, there might be individuals working there with morals, but the company itself has none at all--regardless of what US law says, it's not a person.
This corporation has spied on, sued, made vulnerable to other attacks, and bullied its customers, potential customers, competitors, and little bald children with cancer who were lying in a bed that Sony had to put its muddy boot up on to tie its laces. And, probably because it thought it could get away with overworking or undertraining its net admins, it cut corners when it came to security. The security of its customers' credit card info. Who, after all the bullshit Sony pulled, still paid for their shit, and put their credit at risk, unlike those who "stole" from Sony, who won't have what they bought taken away at the first whim, who aren't badgered every time they want to watch a movie on a different device, who don't have to sit through unskippable guilt-trips and FBI warnings, and don't have to pay again when the disc gets scratched.
Almost feel bad for them? Ha! I'm not even close to feeling bad for them. There is no possible amount of "suffering" that could make me feel bad for them. Call me when Sony wakes up one morning with a pain in its left arm and is forced to face its own mortality.
Re: (Score:2)
And, probably because it thought it could get away with overworking or undertraining its net admins, it cut corners when it came to security.
Listen up, HR. Don't skimp on IT salary or benefits. When your IT group thinks it needs more manpower, it needs more manpower. An understaffed/undertrained IT staff is like hiring Barney Fife for your bank guard; a lot of bluster and bravado, but only one bullet kept in his shirt pocket.
Re: (Score:2)
You know there are some IT staff with Sony who are getting the double beat down of getting their ass chewed and working an 80+ hour week. Most places I've worked couldn't be bothered to improve security because the people who make decisions are only concerned with ROI as a number and then they attempt to choose the bigger number. It's always foot jammed on the gas pedal on new developments and no concern with of existing infrastructure.
Re: (Score:2)
Did they kick your puppy, too?
Most of the things you mentioned were poor corporate decisions. Nothing I'd consider malicious. Sony employees have demonstrated ineptitude time and time again. I get it. But this attack on Sony is only helping the even more evil corporation over in Redmond.
Sony's not trying to lock governments into their technologies. Almost everything they sell is a consumer device. If you don't like what they do as a company, don't buy their products. I don't have that luxury with Microsoft:
Re: (Score:2)
Did they kick your puppy, too?
Most of the things you mentioned were poor corporate decisions. Nothing I'd consider malicious. Sony employees have demonstrated ineptitude time and time again. I get it. But this attack on Sony is only helping the even more evil corporation over in Redmond.
I consider looking at me and seeing only a wallet and a bunch of strings to pull malicious. There is no other possible outcome of that viewpoint.
Sony's not trying to lock governments into their technologies. Almost everything they sell is a consumer device. If you don't like what they do as a company, don't buy their products. I don't have that luxury with Microsoft: I need Windows and Office for work and my tax dollars inevitably go toward putting Windows on government computers.
That's only a question of the products they make. If Sony made OSs, you'd better believe they'd be trying to lock their profits in. Sony would kill, and I mean that quite literally if they thought they could get away with it, they would flat-out murder to be in Microsoft's position. This isn't a question of degree, where one company is more evil than the other--com
Re: (Score:2)
That's the entire problem though, and the implicit point of my post, they do have a company to hide behind. What are you going to do? Go curse them out and tell them what a dickhead they are? You can't sue them (and win). They aren't accountable under the law unless they do some Enron-level book doctoring, and even then the only reason they really got into trouble is that they fucked with the money. Regular dishonest stuff is just par for the course, and things that put people's lives at risk are a monetary
Re: (Score:2)
And this is different from any other corporation how?
They aren't.
You missed the stomping on kittens.
It's unprofitable.
Yeah, because when I break something, the people who made it have a moral duty to give me another one free.
They're the ones who decided they have the right to tell you what to do with something after you've paid for it.
Has anything been accomplished? (Score:2)
Re: (Score:2)
A bunch of crackers got a hold of boatloads of personal information that they can sell for cash money.
That is what it's done. There may be some sort of vendetta, and there definitely is the feeling that Sony is a personal information pinata, but that's really what it is at its core.
Re: (Score:2)
Rather wishful thinking, It'll go like this I think
"I want to buy a game console, this look cool and has games I want. *PURCHASE*"
Re: (Score:2)
A few. Let us recount:
1.) They try to shoehorn their expensive proprietary media formats (MiniDisc, UMD, Memory Stick, Betamax, Blu-Ray) into any product they can.
2.) They ruined Star Wars Galaxies with the "New Game Enhancements" & "Combat Upgrade".
3.) They sued Lik-Sang out of existence for daring to sell Japanese PSPs & games to other countries.
4.) They manufactured exploding batteries & sold them to other laptop vendors.
Re: (Score:2)
No they won't. The only people who will think that are those who already knew about all that stuff.
The only thing on that list that will be remembered is "This is the company whose game console did not allow them to play multiplayer for a month." Which probably won't affect their phone purchase.
And why would it be better that they buy a cheap Korean-made piece of shit from Samsung or LG? They can bypass Sony without taking that massive step down in quality -- Motorola, Nokia, RIM, Apple. . . What type of c
Re: (Score:2)
How about removing it, restored it themselves, then getting info on everyone who commented on the issue? It's not just about removing some functionality because they don't want to support it. Sony intentionally made steps so that this functionality can't ever be restored in any way.
Re: (Score:2)
Re: (Score:2)
>>>I'm sorry, taking away a popular feature they no longer wanted to support isn't an invitation either.
In Europe it's worse than an invitation. It's a criminal offense, and Sony is required to give PS3 refunds to every customer who asks for one. Sony is guilty of false advertising and misrepresenting a product (claiming it could do OtherOS, and then disabling it). AKA bait and switch.
Sony is also guilty of installing viruses from Music CDs, and then destroying the computer with their removal to
they spent all that money on bluray security (Score:2)
What's with the math? (Score:2)
calc.exe tells me: 173000000/77000000=2.2467532467532467532467532467532 So, how is it that this is costing Sony a little over 1% o
Typo in above. (Score:2)
I guess I should have used the preview button.
Re: (Score:2)
1. Sony is covering its losses. Besides it being difficult to measure, would you admit to your shareholders that you lost that much of their money?
2. I'm not really into Pokemon.
Re: (Score:2)
Sony will need to minimize the apparent impact of this, though, to their shareholders - otherwise, the bleeding gets far, far worse. Hence why Sony would share a much lower number.
Wow... just wow... (Score:2)
It's almost eery...
They're either...
1- Very incompetent on the security side
2- Very unlucky
3- Pissed off the wrong people
I think 1 and 3 pretty much covers it...
IMO, I think someone is after blood, and it won't be pretty...
Not a Sony fan but... (Score:2)
Re: (Score:2)
The difference between money and data is, you never lost your data, it was just copied.
Money, if you lose it due to such an attack, can be replaced via various mechanisms. Personal data, the only way to replace it involves losing your job, all of your friends, and your relatives, and going into a witness protection program.
Is "Suffer" a good word here? (Score:2)
As much as Sony seems to attract this kind of attention, maybe "secretly enjoy" would be more accurate.
What I'm seeing is a bizarre attention-seeking behavior, playing into a victimization mindset.
IANAPs (I Am Not A Psychiatrist), though. Just reminds me of a lot of dramawhores I've know.
Re: (Score:2)
No, it's quite a lot more likely that Sony has a bunch of easy vulnerabilities that no one cared to probe for before.
Now it's a pile on where Sony's crappy security gets exposed every day...
Re: (Score:2)
What amazes me is that people who choose to retaliate with criminal actions, and those who cheer them on, don't seem to be able to anticipate the results of their behavior. Events like this are why network connectivity becomes regulated.
Re: (Score:2)
Not referencing attacks on Sony, but the actual act of hacking them has become mainstream. I'm sure it's funnier from our side than theirs.
I can confirm this -- I even hear this at work.
Hey, 'tex, check out this script kiddie trying to get in with ancient Apache server exploits.
Does he think he's trying to hack Sony?!
(P.S. Not that I actively exploit them, but even attack toolkits have known vulnerabilities; Just something for any aspiring script kiddie to think about...)