Daily Sony Hacking Occurs On Schedule 353
jjp9999 writes "LulzSec was compromised and a member of the group, Robert Cavanaugh, was arrested by the FBI on June 6. Meanwhile, LulzSec hacked Sony again, this time leaking the Sony Developer Network source code through file sharing websites."
Sounds like they're got inside access (Score:5, Interesting)
Not a network guy, but if they're repeating these hacks so quickly and with such regularity I imagine their backdoor is still up.
Re:Sounds like they're got inside access (Score:5, Funny)
Re:Sounds like they're got inside access (Score:5, Interesting)
Well, no, I think this is one of the few times that the "terrorists", so to speak, actually won.
LulzSec said they would do this as revenge for Sony taking legal action against someone for jailbreaking the PS3. LulzSec has successfully cost Sony far, far more than jailbreaking ever would have.
Re: (Score:3)
This is an important point. People seem to defend these actions because they're demonstrating security holes. On the contrary this group did not set out to expose security holes but instead were intent on causing disruption. They're not doing this out of any higher sense of moral values. It's bad guys vs bad guys.
Re: (Score:3)
Re: (Score:3)
http://news.cnet.com/8301-27080_3-20068939-245/exclusive-ceo-says-hackers-tried-to-extort-data-money [cnet.com]
Re: (Score:3)
You don't become Robin Hood merely by stealing from rich people. The Robin Hood legend is about the robbers who were different.
Lulzsec isn't showing themselves to be different, they've got no political manifesto, they're not righting wrongs, they're not pointing out injustices that the world is blind to, they're not influencing the views of the masses, etc.
Re: (Score:3)
exclusive-ceo-says-hackers-tried-to-extort-data-money
ceo-says-hackers-tried-to-extort-data-money
ceo-says-hackers
ceo-says
ceo-says
Hmmm, I question the credibility of that.
Re: (Score:2)
Re:Sounds like they're got inside access (Score:5, Insightful)
Well, no, I think this is one of the few times that the "terrorists", so to speak, actually won.
10 years ago no one would have used the word "terrorists" (in quotations or otherwise) to describe straight forward black hat hacking.
There are at least a hundred definitions of "terrorism" and they all include violence or the threat of violence.
There's no violence here.
Re: (Score:2)
No violence, but there was some intended allusion to the ever typical THE TERRORISTS HAVE WON type of bleat.
Re: (Score:2)
>>There are at least a hundred definitions of "terrorism" and they all include violence or the threat of violence.
They certainly spread terror among all the Call of Duty players - my cheevos!!! NOOOOOOOOOO!!!! (Ok, well, they're trophies on the PS3, but still.)
They spread terror at Sony - let's hope their president gets axed for his ridiculous persecution of GeoHot, and his subpoenaing of all the donors to his legal fund.
But yeah, "terrorists" is a bit of an extreme label. Maybe "bullies" would apply
Re:Sounds like they're got inside access (Score:5, Interesting)
Can you name one "terrorist" attack that hasn't been severly one sided in terms of cost?
Seriously, what "terrorist" attack in the last 10 years were you thinking of that hasn't caused a serous disproportionate response? Why do you think there seem to be more attacks in the last few years? For every couple thousand spent blowing, or attempting to blow, something up we spend hundreds or millions/billions/trillions reacting to it and every few large attacks causes the US to give away more of the "freedom(s)" that the terrorists hate. Over the last decade
the "terrorists", so to speak, [have] won.
Re: (Score:2)
That'll work well. I know I was ready to return my PS3 to Sony accompanied by select choices from my cat's litterbox if they didn't get their shit fixed soon. I wonder how many ps3s wound up at a pawn shop to finance the purchase of an Xbox.
Re:Sounds like they're got inside access (Score:5, Insightful)
Maybe you didn't read the earlier articles about just how horrible Sony's security setup is. Here's a hint: It's every bit bad enough that a dedicated group could find a different way into the system every day for weeks on end.
Re: (Score:2)
Re: (Score:3, Funny)
Maybe you didn't read the earlier articles about just how horrible Sony's security setup is. Here's a hint: It's every bit bad enough that a dedicated group could find a different way into the system every day for weeks on end.
Yes, but think how much money they saved on IT!
Re:Sounds like they're got inside access (Score:5, Insightful)
Maybe you didn't read the earlier articles about just how horrible Sony's security setup is. Here's a hint: It's every bit bad enough that a dedicated group could find a different way into the system every day for weeks on end.
I don't think you're doing anyone a favor when you present Sony as a monolithic corporation.
It's not as simple as Sony vetting one security setup and replicating it across all websites tagged as Sony.
Sony is made of of endless domestic and international subcorporations, each with its own (poor) security setup.
At least these hacks are a return to the previous trend of defacements, revenge, and lulz,
as opposed to the last few years of organized crime, ID theft, and renting out botnets.
Re: (Score:2)
so they are a poorly organised along with being a clueless gang of fucktards! thanks for clearing that up
Re: (Score:2)
Security culture is something that either is present in a large organization, or it isn't. The evidence suggests that Sony did not take security seriously in its projects until the series of attacks. Once that culture of insecurity is present, it takes years to undo. Think about how long it has taken Microsoft to shed even part of their image of insecurity.
Projects often need to be rewritten from the ground up to actually permit something remotely resembling security. Attackers are using far more sophis
Re: (Score:3)
"At least these hacks are a return to the previous trend of defacements, revenge, and lulz, as opposed to the last few years of organized crime, ID theft, and renting out botnets."
I absolutely agree with this, for some years now I've been concerned that real hackers had disspeared, many grown up and moved on, others gone over to organised crime. That new kids entering the scene were either too scared by the police to try more harmless hacking and those that weren't just going for the money in the crime game
Re: (Score:3)
Well, first of all it would be the CSOs or more specifically the CISOs job, and I bet he's currently getting very little sleep. But allow me to explain just why this could happen, and why the CISO "didn't do his job". I'm fairly sure the poor guy is now getting to feel the fallout of something that he couldn't even have done any better. Since I have his job (in another rather large company), I can only assume what creek he's stuck in, without the budget for paddles.
First of all, he most likely has to beg, s
Nope, Safety is a Myth (Score:5, Interesting)
Just like the TSA hasn't stopped a single act of terror, only passengers have done that; most security measures cannot stop a determined professional.
Safety and Security are largely mythological, the concepts are sold to a public that feels the need to exist with impunity.
In point of fact, it is largely manners that keeps people safe and secure. Most of us do not act on our darker natures because it would be rude.
Sony has demonstrated that they don't care about being well-mannered, and that they honestly believe that technology can keep them safe. They believe in DRM and they believe that they have the right to change a deal they have already made as if they were Darth Vader. They believe in their own Empire and they are willing to use any means necessary to maintain their grasp.
In point of fact, the technological community is simply having a very high immune response to this bad actor in their midst.
If Sony were to just come out, apologize for being douche-bags and promise never to do it again, they attacks would taper off quickly. They don't even have to mean it.
For all that the *IAA have been idiots and evil, they didn't mess with the technologists as a whole, so they have gotten a pass so far. They also don't actually do anything, so they have been impossible to strike.
Sony, as a member of *IAA(s) _and_ as a first person actor in technology via the PS3 etc, _and_ having stepped far across the line with the Hotz thing, has simply taken the first hit of lightning.
Thing is, the community at large has now learned that they _can_ make a company pay. The frontier has been opened. The Streisand Effect is real, and it will, sadly, take the business world a little longer to learn that "The Angry Villagers Rule" is real as well.
The torches are alight and the pitchforks are out and waving.
In the technological circles, the technologists are peasants, but they do feed the nation and they do strike back.
Companies need to rediscover their manners.
Re:Nope, Safety is a Myth (Score:4, Insightful)
Wait what? You talk about 'bad manners' as agents of malcontent.
I don't know where you come from, but I would consider it 'bad manners' to crack a security system just because you don't like a person, organization, or company... just as I would consider it 'bad manners' to punch someone in the face because I think they have 'bad manners.' Isn't it 'bad manners' to force someone to do something they would rather not... such as change their password because you just stole it from them?
I don't know of a single nation that forces people to buy Playstations, Sony Music, or Sony TVs. If you don't like it, don't associate with them. Anything else is 'bad manners.'
Re: (Score:2)
I made no claim that the crackers were well mannered.
Bad manners never engender good manners in others.
I was also not advocating the process, just diagnosing it.
Re: (Score:2)
I made no claim that the crackers were well mannered.
Bad manners never engender good manners in others.
I was also not advocating the process, just diagnosing it.
We'll you are correct, and it's a shame that this happens. The sad truth is, this is some ridiculous war between Sony and some image it has of how the world is. The same can be said for LulzSec and like minded people. The victims are the users caught in the middle. It's no different than some poor SOB getting shot in the face between two guys going at it outside a club because one guy pissed of the other
Re: (Score:2)
Re: (Score:3, Insightful)
Ah, but in objective view, we are into "the contractors working on the Death Star" debate. Blindly supporting one bad actor (Sony) and then complaining about suffering the fallout from another bad actor (hackers) is a tad disingenuous.
You may not have _known_ you were supporting a bad actor, but its not so much that you happened to be in a bar when a brawl broke out, more you got into his car and rode to the convenience store, sat there in the car while he attempted a robbery, and then complain about gettin
Re: (Score:3)
This is not a revolt any more than a mugging is a revolt. Your attempts to romanticize common thugs is pathetic.
Also, I don't even own a playstation. I just understand the difference between right and wrong.
Re: (Score:3)
Throughout time, the penalty for having bad manners has often been others showing you none in return until you get the point.
For example, make a lewd comment to someone's wife and indeed he will punch your face because he thinks you have bad manners.
Re: (Score:3)
If sony admitted faults, the lulz would not go away. They are not being hacked out of any sense of moral indignation but because it seems like a funny idea. These are not even up to the very low moral level of vigilantes, they are merely causing disruption for it's own sake. These people are not "the community."
Re:Nope, Safety is a Myth (Score:5, Informative)
I'm guessing that at least part of the fun is the support they're getting. If that support evaporated, I think they'd find other targets. They want bitcoin donations, they talk about how many people follow them on twitter. They care about the support they get. So I don't think your assessment is entirely accurate.
Re: (Score:3)
Re: (Score:2)
Re: (Score:2)
Then sue them.
I believe that's been tried already, and the suit was tossed out.
Re: (Score:2)
Not a network guy, but if they're repeating these hacks so quickly and with such regularity I imagine their backdoor is still up.
Nope, you're giving Sony too much credit. This is a basic SQL Injection Hack, one that every one of Sony's servers are vulnerable to and that they still haven't patched.
Here are some pics of him. (Score:3)
(for the lulz)...spoiler alert: mIRC, smoke weed errrday, WinXP, Amazon shopping spree
I almost feel sorry for Sony (Score:5, Funny)
no wait, I don't. Get me some popcorn, this is a good show.
Re:I almost feel sorry for Sony (Score:5, Insightful)
I just imagine someone hacking their presentation at E3 while they're live onstage. That would be some serious lulz.
Re: (Score:2, Funny)
you attack its weak point for massive damage (Score:5, Funny)
Re: (Score:3)
Re: (Score:2)
Wouldn't it be ironic if they used a root kit? Or would that be poetic justice?
it would be ironic if the rootkit was already in place before lulzsec came along...
I think it would be ironic if it was made of iron...
TFA Is Sparse On Information (Score:5, Informative)
Re:TFA Is Sparse On Information (Score:5, Funny)
Re: (Score:2)
Arrested (Score:5, Insightful)
Guess the seven proxies weren't enough.
How did this arrest go down? This is clearly a more interesting development then yet another Sony hack. Hopefully there will be more information forthcoming.
Re:Arrested (Score:4, Interesting)
Might be they arrested one of the seven proxies? ;-)
Some more info (Score:3, Informative)
The article is pretty bad:
One member of the group, Robert Cavanaugh, was apprehended and taken into custody by the FBI after an apparent counter hack, according to an internal chat log from their private IRC server, posted through SecList, a network mapper website.
SecList? I think they meant the full-disclosure mailing list, which happens to be archived by seclists.org, which happens to be a "sister site" of insecure.org (the home of the nmap network mapper).
Anyway, here is the relevant post [seclists.org]
Robert Cavanaugh (Not Apart of Lulzsec) (Score:2, Informative)
This kid isn't apart of LulzSec, he was in the process of being recruited. As you can see his arrest as no effect on LulzSec.
Re:Robert Cavanaugh (Not Apart of Lulzsec) (Score:5, Funny)
That would mean he is apart of lulzsec - not that that makes him a part of it, or anything like that.
Re: (Score:2)
That would mean he is apart of lulzsec - not that that makes him a part of it, or anything like that.
That's alot like when people join two separate words together. I feel kinda pissed off about it.
Story innacurate according to the group (Score:5, Informative)
Re: (Score:2)
Parent is not goatse. Parent link appears to not contain any horrible images.
Bad Porn (Score:2)
I'm not sure which is more frightening - the fact these guys backdoor Sony repeatedly or that Sony doesn't seem to want to stop them.
For the record:
1) Yes, I am aware of the double entendres.
2) No, I do not believe rape is funny.
3) No, I am not homophobic.
Re: (Score:2)
Re: (Score:2, Interesting)
Re:Bad Porn (Score:5, Insightful)
Re: (Score:2)
For the record:
[snip]
3) No, I am not homophobic.
...so, how about a date this Friday night?
What is the point, really? (Score:3)
Go FBI! (Score:3, Insightful)
Seriously, I expect this will be modded into oblivion because Slashdot hates Sony and loves anyone who sticks it to the man (see also: Wikileaks, Anonymous, etc).
But they are criminals, and therefore I for one am glad that the FBI has had some little success in tracking them down, and look forward eagerly to the day when the ringleaders are forced to defend their actions in court.
The fact that they are committing crimes against someone you hate cannot justify those crimes. Indeed it must not, because turning a blind eye to crime just because you don't like the victim leads to mob rule. It is the antithesis of the rule of law on which our society is founded, which protects our rights as well as Sony's. That's one slope that history has proven time and time again to be very slippery indeed.
And, hey, maybe they'll put up such a good defence that the jury will refuse to convict them and the balance of power between corporations and common people will be shifted, and that would probably be good too. But it should be done in courts or congress, not by vigilante mobs deciding to lynch a corporation that offended them.
Re: (Score:3, Interesting)
And, hey, maybe they'll put up such a good defence that the jury will refuse to convict them and the balance of power between corporations and common people will be shifted, and that would probably be good too. But it should be done in courts or congress, not by vigilante mobs deciding to lynch a corporation that offended them.
Does it hurt to be that naive?
Sure they are breaking the law, and they are probably bad people, but this is like watching Stalin fight Hitler. No matter who loses we win. In reality s
Re: (Score:2)
The people who are going to get hurt are those whose personal information has been released, and who may suffer identity theft or worse as a result. Again, like Hitler vs Stalin, it's the millions of people who got caught in the middle who suffer.
Not always black and white (Score:5, Insightful)
Indeed it must not, because turning a blind eye to crime just because you don't like the victim leads to mob rule. It is the antithesis of the rule of law on which our society is founded, which protects our rights as well as Sony's. That's one slope that history has proven time and time again to be very slippery indeed.
I don't think the history has conclusively proven at all whether the rule of law enforced blindly without regards to who is right or wrong is a good thing.
For example, the Underground Railroad illegally helping escaped slaves, or every revolution in the history of the world.
Obviously the importance of the cause is different here, but it helps make my point clearer by using high-profile examples.
Re: (Score:2)
/Every/ revolution? Even the Bolshevik revolution? The Khmer Rouge one in Cambodia?
Re: (Score:2)
If we take the GeoHot story as an example (a subset, if you will), it is clear that they take issue with the notion that someone might purchase a thing, and then not own it. A large chunk of our economic rationalism is based on the concept that when you buy a thing, you own it. If the person who sold it to you then continue to claim any 'rights' to the object, it is an offence to capitalism.
I'm no
Re: (Score:2)
But they are criminals, and therefore I for one am glad that the FBI has had some little success in tracking them down
You can not be serious Haeleth. By that rationale, any time a tyrant needs to gain your approval he only needs to make any opposing
act a criminal offense and you'll be certain to point out that "but they are criminals!".
You sir, need to read up on some philosophy, particularly Thoreau's Civil Disobedience. Regardless of government, that essay
applies to all authority as far as I'm concerned
Re: (Score:2)
So, you don't like Sony?
Re: (Score:2)
Re: (Score:2)
You are correct sir. I should be able to park a dump truck full of gold anywhere in the world and know that it will be safe. Likewise, I should be able to create an account with and not worry about criminals misusing that information. Criminals, weather premeditated or not, always think that "because I could, I should." It doesn't matter if you are stealing my truck full o' gold because I was stupid, or stealing my identity because you can. It isn't yours, and you have no privileges to access it....
Un
Re: (Score:2)
I'll give a rat's ass when Sony is held to the same legal standards as Joe Hacker.
Comment removed (Score:5, Interesting)
Re: (Score:2)
Wait.. when did SONY hack your system?
Did I miss something? Was somebody at SONY - presumably somebody high enough in the ranks to be referred to as 'SONY', and not some kid who got bored - actually connecting to your computer, exploiting a vulnerability, and using that to their advantage somehow?
I ask because that's what I'm thinking of when somebody says 'hack'.
I'm pretty sure that installing software when a CD is inserted, for the purposes of copyright prot
Re: (Score:2)
The fact that they are committing crimes against someone you hate cannot justify those crimes. Indeed it must not, because turning a blind eye to crime just because you don't like the victim leads to mob rule. It is the antithesis of the rule of law on which our society is founded, which protects our rights as well as Sony's. That's one slope that history has proven time and time again to be very slippery indeed.
Sure, they did they crime, they should do the time...that's part of civil disobedience. But cheering on the hackers against Sony is no different from, say, cheering on MLK during the '60s. Or any major civil rights leaders. Almost all of them have done something illegal as part of their movements. Sit-ins, for example. Illegal and immoral are two entirely different concepts, and while I understand the importance of firm laws, I for one support moral behavior over legal behavior every time.
Re: (Score:3)
But it should be done in courts or congress, not by vigilante mobs deciding to lynch a corporation that offended them.
Yes it should, but it won't be. Those same corporations own those politicians and courts lock stock and barrel. The only time we ever see any government action against a corporation is when it's one corporation verses another, biggest bastard take all. There is no realistic legal action that any individual can take against a corporation. The laws and legal processes make sure of that.
Laws were broken and heads were busted the last time that individual American's actions had any effect on the state of th
Re: (Score:2)
What? Are you kidding? Corporations own all branches of the government. They write the laws, pay off their rubber stamps in Congress, and promise sweet, sweet cash for reelection of the President. The people won't get justice through the court nor through the law. Yes, they broke the law but I'll side with them until people with money and power are beholden to the same laws and penalties.
I suppose I can't justify the exposure of personal data but at the same time how do we know all this data wasn't abused i
Re: (Score:2)
Seriously, I expect this will be modded into oblivion
Of course it wasn't, because you used the karma-whoring trick by complaining in advance.
because Slashdot hates Sony and loves anyone who sticks it to the man (see also: Wikileaks, Anonymous, etc).
Actually, there have been quite a few posts, highly moderated no less, that have disparaged the hackers. Done without karma-whoring, too.
Re:Go FBI! (Score:5, Insightful)
I'm losing all the mods I made thus far (and resisting the temptation to downmod you just because you coughed up that stupid "I'll get modded down for this" crap, which is my usual policy for such whiny attention-seeking dickweedism), but I can't let this go by uncontested.
turning a blind eye to crime just because you don't like the victim leads to mob rule. It is the antithesis of the rule of law on which our society is founded, which protects our rights as well as Sony's.
That's just crazy. Our society in no way "protects our rights as well as Sony's." Our legal system is designed to protect Sony's "rights" (which are not rights, but privileges granted to an artificial construct called Sony) at the expense of our rights (which are in fact, as enumerated in our Constitution, actual and legal rights). The idea you propose here matches neither the theoretical nor the actual system under which we live. And you know it.
That's one slope that history has proven time and time again to be very slippery indeed.
I'd say the exact same thing, but I don't think we're talking about the same slope.
And, hey, maybe they'll put up such a good defence that the jury will refuse to convict them and the balance of power between corporations and common people will be shifted, and that would probably be good too. But it should be done in courts or congress, not by vigilante mobs deciding to lynch a corporation that offended them.
Because that happens in courtrooms across this great land of ours every day, doesn't it? Congresscritters are pushing each other out of the way to champion Joe Everyman against the nefarious interests of Big Media, aren't they? And our well-informed, socially aware, and technologically savvy courts deal defeat after defeat to these villains! Why, it's a wonder things like this ever happen given the enlightened society and legal code under which we live!
Are you fucking kidding me?
Are you for some reason under the impression that those people work for you or something? I can assure you they do not.
Given all that, I'd like to hear a realistic alternative to vigilante mobs.
Re: (Score:2)
Hey, that's pretty good. Vandalism, theft, fraud, abuse of process, all crimes when done by kids and rights when done by corporate thralls.
I'm going to break something of yours, now. But it's ok, see, I wrote myself a permission slip, AND I'm going to let you choose which of these two things to let me break!
I'll even let you watch, and if you try to fix it afterwards I sue your ass into oblivion in a court case I and everyone on the planet knows I can't win, but I don't care. I get paid the same eit
Re: (Score:2)
Seriously, I expect this will be modded into oblivion because Slashdot hates Sony and loves anyone who sticks it to the man (see also: Wikileaks, Anonymous, etc).
I don't think anybody is describing these guys as 'good' or 'heroes' or 'right'. I think they're just happy to see Sony take its lumps.
If my estimation of the current feelings of the GroupThink, you'd get modded down for saying that this should never have happened to Sony, but I don't think anybody'll give you crap about calling these guys criminals.
Re: (Score:3)
Your unwavering view that the rule of law is moral and just is disturbing.
I live in the UK where we have a first past the post voting system such that most governments are elected to have a majority giving them 100% of power with the support of only 30% - 35% of the population. This has led to schemes such as the ID card database which well over half the population opposed. Many laws are similarly opposed by such large proportions, but due to the nature of our voting system may be passed anyway.
I do not res
I get the sense that Lulz is related to Anon (Score:2)
If nothing else, this has provided me the impetus to go and change all my passwords.
Re: (Score:2)
Really? (Score:2)
By now I'm surprised there aren't actually several groups which have turned this whole thing into some kind of sport. It's certainly not for a lack of opportunities.
Hacked? (Score:2)
lulzsec == pwnt? (Score:3)
http://seclists.org/fulldisclosure/2011/Jun/75 [seclists.org]
Re:I lost track (Score:5, Insightful)
You don't let people hack your consoles, they find something else to hack. Idle hands and all that. :)
Re: (Score:2)
At this point it's the schoolyard bully syndrome. One bully beats up the rich kid and suddenly 6 others run over to kick him in the head while he's on the ground. It's debatable whether any of the new arrivals give a damn about the purported causes of the original hack. Sony's on the ropes from a security standpoint, and it sure is fun to keep punching.
That said, I have difficulty mustering up much sympathy for Sony, because it is possible to secure a network so that it is not as wildly hackable as Sony's a
Re: (Score:2)
Re: (Score:2)
Re: (Score:2)
More effective? How do you figure? Now the kids have peoples' credit cards, and a whole shitload of people have to get new cards and take other steps to avoid being wiped out. These dipshits are punishing Sony's customers more than Sony.
Re: (Score:3)
Don't they realize they would gain much more by apologizing for and desisting against GeoHot
What part of "settled out of court" don't you understand?
Re: (Score:3)
Paragraphs, learn how to use them.
Re: (Score:2)
There is a difference between knowing how to do something, and actually doing it.
Yeah. Like Unicode.
I'm looking at you Slashdot. You and all of your silly Varnish servers.
Re: (Score:2)
in regards of computer security yes you wear your bullet proof vest all day everyday
and no this is not like blaming a rape victim for acting like a slut, this is blaming a slut for acting like a a slut wide open and completely exposed
Re: (Score:2)
BOOM! Headshot! Well, so much for that vest, at least the family might be able to sell it off to pay for part of the funeral costs.
Even if the wide open and completely exposed slut is pleasuring themselves with any and every object imaginable it still wouldn't be an excuse for raping them.
Re: (Score:2)
The thing is, you are putting your website out on a street that is KNOWN to have people randomly shot by (let's be a little nicer here) paintballs. That's the Internet, and it's what the Internet has been for decades now. It costs a little bit, but it's relatively easy to have very tough to defeat body armor. Sony went out onto that street in it's underwear, and is now complaining that jerks are shooting them with paintballs. Legally, Sony is completely right. Morally... Sony deserves every ass-welt they g
Re: (Score:2)
I don't agree with your metaphor; Sony aren't simply walking down the street, they are responsible for the security of more than their own network (in the metaphor, their own life) - they are responsible for the data and identity of all the customers they keep on file.
So it's more like a bus-driver, driving a bus down a road.
Now a SQL injection is only possible if the coder who wrote the Sony server software was an incompetent moron AND no proper code review has been done. Securing your inputs is not at all
Re: (Score:3)
Actually, a website vulnerable to SQL injection really is completely inane in 2011. This is something that every DB framework knows how to handle, and also something that has been explained in detail again and again for over a decade. There is no excuse for having something like that on a production website, period.
It's not like not wearing a bulletproof vest, it's more like going out in the street naked with $100 bills glued all over you at 3am in Detroit. In these circumstances, it is entirely appropriate
Re: (Score:2)
No, you don't get to blame Sony for the crime, but saying that Sony have been (criminally?) negligent in protecting their customers' data? That they've failed to learn from their multitude of security mistakes? That actually they kind of deserve it in this case?
A simple "We apologise for our douchebaggery over the OtherOS stuff" months ago would probably have been enough to have avoided all this trouble, but they wanted to save face at a cost of what is fast becoming a PR nightmare. If LulzSec don't have so