-
Hey, guest user. Hope you're enjoying NeoGAF! Have you considered registering for an account? Come join us and add your take to the daily discourse.
CNET Rumor: Hackers Planning Third Attack Against Sony, Publicizing Data
- Thread starter Wario64
- Start date
Fourth Storm
Member
beast786 said:
Yes. My personal information is now in the possession of criminals. I'm done. I'm not about to get dragged into an idiotic argument and wind up banned before E3.
Doesn't matter what any ones says Anonymous fuck up attacking sony.
I love how someone is sending out press releases from "Anonymous" saying we didnt have anything to do with this. How the fuck can you say this when you have no control over anyone? They found the Anonymous files planted on Sony's servers.
Funny this is real first successful attack Anonymous has done. You only fucked over millions of the consumer you been fighting for....FBI going to be all over 4chan but really they been there the whole time.
I love how someone is sending out press releases from "Anonymous" saying we didnt have anything to do with this. How the fuck can you say this when you have no control over anyone? They found the Anonymous files planted on Sony's servers.
Funny this is real first successful attack Anonymous has done. You only fucked over millions of the consumer you been fighting for....FBI going to be all over 4chan but really they been there the whole time.
bigtroyjon
Member
Mr Pockets said:
If the majority of the big companies have Sony's security then everyone in the civilized world has their info in serious trouble right now.
babyghost853
Member
[B said:
Wait, what?
sonikokaruto
Banned
1. Anonymous is not 4chanUSC-fan said:
2. Anonymous really is not doing it.
3. Anonymous already has a lot of enemies
4. Congress wants to restrict net access
5. Anonymous helped wikileaks (supposedly)
6. Anonymous is a threat to government
If you can't or are not able to connect the damn dots, Sony is te least of all the troubles. Why the fuck does the FBI and congress and shit want to defend Sony? They just want to find leads to get rid of threats to them.
Also, any service is open to any attack, so, you guys almost making death threats are only creating more lulz
Plz, look at the bigger picture. I don't want this Sony incident to be a cause to restrict and track all net traffic. Open your eyes, they want to control you. Remember the interactive music cd's. Anonymous is only trying to make a point, and this whole mess is just turning into a giant honeypot. Open your eyes. It's your console. It's your games. You're not renting them or lending them. Open your eyes.
Anonymous is a threat to government.sonikokaruto said:
How the fuck do you come up with that?
Simple fact sony been using the same server for years. Who would want to hack them and steal info? No one was even looking at it until Anonymous went on the attack. From what everyone saying it wasnt that hard to hack bc they were using old stuff with no firewalls...
sonikokaruto
Banned
Read what I posted. Anonymous is just an excuse. It may even be planted.USC-fan said:
Dedication Through Light
Member
Well I hope CNET learns to stop using irc chats and etc as sources
WickedAngel
Banned
pantyhelmet said:
No. I do this sort of thing for a living; I do not practice network security on the scale that Sony would but the fundamental approach to it is the same whether you're working with SMBs or Enterprise-class clients.
Simply put, there are things you just don't do no matter how big or small you are (For instance, they stored critical data in plaintext format). Compare/contrast that with the LastPass breach this week, which resulted in the possible leak of encrypted blob files and salted hashes that are nigh uncrackable with a good password.
ZephyrFate said:
On the "Bad Shit that Can Happen in Your Life" scale of 1-10, with 1 being indigestion and 10 being a slow, painful death, a lack of access to one's videogames ranks around .2. Identity theft ranks at about an 8, but Sony is offering credit monitoring services that should ease that problem.
WickedAngel said:
It's no good telling people that being unable to play videogames is inconsequential when the subject of discussion is how well people trust and like the company that is providing them access to online play. Sony's ability to provide their customers with reliable, trust-able online play is the very core of the issue, and there is no reason for customers to have a (business) relationship with Sony if Sony cannot satisfy them.
WickedAngel
Banned
Bregor said:
There isn't even a discussion to be had on the issue as they've proven themselves untrustworthy. Knowing what we know now, there is no reason to ever trust Sony again with critical data.
You're free to be bought off with some paltry token like a free game; I will forgo said trinket and vow to never provide them with any data of consequence that belongs to me. PS3 stays offline henceforth.
arnoldocastillo2003
Member
Ok i have to say this, about this article: http://news.cnet.com/8301-1009_3-20060661-83.html#ixzz1LdAyEUJl
In this part:
This is false SONY knew or at least were suspicious about the CC being lost by the 24th and maybe by 23, maybe by 25 it was a confirmed action by SONY with the 3 security firms.
In this part:
This is false SONY knew or at least were suspicious about the CC being lost by the 24th and maybe by 23, maybe by 25 it was a confirmed action by SONY with the 3 security firms.
cpp_is_king
Member
WickedAngel said:
People keep saying this, but I haven't seen any proof that it's true.
cpp_is_king
Member
Averon said:
Well, just to be clear, I haven't seen any proof that it's not true either. For example, there were some anecdotal reports of people saying that when they changed their password it would complain if the password was the same or similar to your old one. Certainly this could be made secure by by encrypting the plaintext password, although you'd have to store the key somewhere, and as such the key is vulnerable to being compromised / discovered.
arnoldocastillo2003
Member
itxaka said:
Thats not true, you need SONY algorithm to crack´em! it maybe not as easy as you say.
WickedAngel
Banned
Averon said:
TTP said:
Sony must be misinformed then:
http://blog.us.playstation.com/2011/04/27/qa-1-for-playstation-network-and-qriocity-services/
I consider any information of a personal nature to be "critical". I didn't say that all data was in plaintext, nor did I specifically mention credit card/passwords. Having access to massive amounts of personal data can provide other venues of accessing accounts (Social engineering, account recovery manipulation, etc.)
Actually, Sony is misinformed as any system that doesn't recognize massive amounts of data being siphoned off is anything but "sophisticated". Any of the common Enterprise-class IDS' would have raised a red flag on that.
cpp_is_king
Member
arnoldocastillo2003 said:
It's safer to use a well-known hashing algorithm than try to invent your own. Ironically, hashing is trivially defeatable on anything less than 9 or so characters. These days your password needs to be at least 10 characters with a mix of letters, numbers, and symbols, and it needs to be completely unintelligible and not even related to any spoken / written language.
arnoldocastillo2003
Member
PJV3 said:
OMG! LOL! insanity level coming back!
arnoldocastillo2003
Member
cpp_is_king said:
Well, that sucks, nevermind, shit is pointless really.
If we didn't have the information out in the open I would agree that it's not their fault, but eating up everything that's been told to you like a sheep will just spread more false information around.TTP said:
If there is one thing I've learned about this whole debacle is that 90% of the people don't check their sources, and believe everything that the media throws at them.
Every time I see an article saying that 77 million people have had their credit card numbers exposed makes my eyes roll.
Stuggernaut
Grandma's Chippy
I didn't realize that we knew that the majority of big companies had better security than Sony. I missed the chart that showed Sony security vs the rest. My bad.bigtroyjon said:
Hackers have been targeting all those other companies specifically as well, and just could not get through, luckily they finally tried Sony!!
Synth_floyd
Banned
How can they blame "anonymous?" Anonymous is anyone who claims to be anonymous. If I run down the street and snatch some woman's purse and then say "I'm anonymous!" then suddenly anonymous is a bunch of purse snatchers.
bigtroyjon
Member
Mr Pockets said:
you gotta be trollin here right? I refuse to believe that a fully functioning adult could think that a MAJORITY of major companies out there have similar vulnerabilities yet have never been touched by commercial hackers.
bigtroyjon
Member
babyghost853 said:
I'm about to go to sleep but when I wake up I look forward to reading your response on how those two links had any connection to what I wrote.
Stuggernaut
Grandma's Chippy
lolbigtroyjon said:
So by that logic you are assuming that Sony is the only company out there that is/was hackable because for some reason they don't use proper security? Right.
What about the password site that was hacked last week? Considering what they do, they should have some serious security no???
What about that marketing company that was hacked just 2 weeks before Sony? Millions of users personal info at risk, companies as well.
What about the Google Image manipulation crap that is going on right now? Not a hack in the sense of the rest, but still an intrusion.
My point is now, and has been in all these threads. If Hackers want you, they will hit you.
Sony painted a big target on their back and they are being repeatedly kicked in the groin for it.
Do they deserve it? Hell no.
Hopefully Sony will get back on track, and other companies will take a hard look at their own security and beef things up. And I hope as well that other hackers are not empowered by the success of their brethren to become more bold with their attacks.
I just want all this shit to end.
bigtroyjon
Member
Mr Pockets said:
2 hacking examples, neither of which were major companies, is your reply? Once again, you either trollin or have gone full retard. Take your pick. You yourself said the MAJORITY of major companies are in Sony's shoes. waiting for evidence that even a minority are in the same bout.
hey_it's_that_dog
benevolent sexism
bigtroyjon said:
The fact that Sony were hacked merely suggests that their security might have been sub-par. It is not proof that it was.
This all fucking sucks. But I'm finding some aspects funny. Take Howard Stringer's latest apology letter, for example. So many parallels with the BP 'sorry' video in South Park.
image: http://www.neowin.net/forum/uploads/monthly_10_2010/post-645-12882877717224.jpg
Linked because well, having a man's ass on show isn't really worksafe even if it is South Park.
image: http://www.neowin.net/forum/uploads/monthly_10_2010/post-645-12882877717224.jpg
Linked because well, having a man's ass on show isn't really worksafe even if it is South Park.
Stuggernaut
Grandma's Chippy
For the record, the word "majority" was used by the person I quoted....oh that was you ;Pbigtroyjon said:
I also don't consider the company I mentioned being hacked a small one. I think they are one of the largest (if not the largest) mail marketer going. Lots and lots of big businesses used them. Look it up yourself, it's a big list. So they should have had better security as well.
And while the password site may not be a major company, their whole world is security.
We can talk circles all day if you like but when people imply assumptions are facts, I like to comment. Not necessarily what you did in that specific case, but close enough.
Phife Dawg
Member
So apparently some information (2500 data sets) was publicized on the internet, whether or not this is linked to the CNET rumors remains to be seen.
These threads go so fast so apologies if it was already posted.
German link:
http://www.spiegel.de/netzwelt/games/0,1518,761227,00.html
These threads go so fast so apologies if it was already posted.
German link:
http://www.spiegel.de/netzwelt/games/0,1518,761227,00.html
Dreamgazer
Member
2500 data sets from a 2001 database.
Nothing related to PSN directly, despite the FUD news that is now passing around on some sites.
Better source:
http://www.msnbc.msn.com/id/42937749/ns/technology_and_science-games/
Nothing related to PSN directly, despite the FUD news that is now passing around on some sites.
Better source:
http://www.msnbc.msn.com/id/42937749/ns/technology_and_science-games/
WickedAngel said:
wtf kind of logic is this? Like if they don't have super network security our info is prone to attack by wild animals?
No, they'd be attacked by the same fucking douche-nozzles you're praising. They wouldn't need any security if these nerds would spend their time doing something worthwhile instead of stealing innocent peoples private information. No matter who we do business with, there's always a chance that some random decision will get some dorky panties in a wad.
"If losing data is what it takes to properly invest in network security, they don't deserve to be in business."
Wow, that's some juicy drama right there.
WickedAngel said:
Another example of very little logic being put forth.
It seems to me, with just minor consideration, that Sony will be just about the safest company to do business with once they're back up.