-
Hey, guest user. Hope you're enjoying NeoGAF! Have you considered registering for an account? Come join us and add your take to the daily discourse.
PSN thread: PSN up in all areas except HK/Korea (Store is not up yet)
- Thread starter Kagari
- Start date
- Status
SolidSnakex
Member
Darkangus said:
He's not talking about PSN. He's talking about Sony websites in general.
CrazedArabMan
Member
I'm probably one of the few people that actually got a PS3 after the attacks then sell one. Well it was a free gift but still.
Brannon said:
:lol x 5 at that PBF. I haven't seen that before.
Also who cares about the rest of the Sony sites. Just let me get PSN up for a day so I can trophy whore Portal 2. Trophy whore Portal 2. Trophy whore Portal 2.
Goddamn it. :|
lunarworks
Member
To be honest, I'm still amazed how fast the whole world of big business became totally internet-enabled. Fuck-ups like this are going to happen more and more as more hackers are emboldened. It'll take at least a decade until proper security is universally implemented.chubigans said:
vikingvessel
Member
Luckyman said:
WickedLaharl
Member
lolypoly said:
promise?
test_account
XP-39C²
I just read through the whole Reuters article and it seems that it is not referring to PSN indeed, but other Sony related websites.
I also found this quote interesting:
"Security experts have said they believe the hackers initially gained access to Sony's network through a "spear-phishing" attack that targeted a systems administrator who had broad privileges to access data on Sony's networks.
In "spear-phishing" campaigns, hackers craft e-mails with personalized messages so that the recipients let their guard down and click on links or download attachments that launch malicious software programs that take over their computers.
Once one PC is corrupted, hackers can use that machine as a base from which to launch sophisticated operations, such as the attacks on Sony's networks."
If this is true, then it really didnt have much to do with the security itself on the PSN servers, but rather that one (or several) employee got fooled thinking that a phishing mail was a real mail. I also wonder what type of malicious software they think about, and wouldnt some anti-virus etc. software detect this?
But regardless, this claim does kinda collide with the statement that one of Sony's representatives said during the May 1st press conference, where it was mentioned that the hackers used a "known to the world" vulnerability. I assume that he wasnt referring to a phishing attack at least.
I also wonder if Sony runs all their webistes internally or if there are 3rd parties that are in charge of some of the sites. But anyway, they need to improve their security for sure.
I also found this quote interesting:
"Security experts have said they believe the hackers initially gained access to Sony's network through a "spear-phishing" attack that targeted a systems administrator who had broad privileges to access data on Sony's networks.
In "spear-phishing" campaigns, hackers craft e-mails with personalized messages so that the recipients let their guard down and click on links or download attachments that launch malicious software programs that take over their computers.
Once one PC is corrupted, hackers can use that machine as a base from which to launch sophisticated operations, such as the attacks on Sony's networks."
If this is true, then it really didnt have much to do with the security itself on the PSN servers, but rather that one (or several) employee got fooled thinking that a phishing mail was a real mail. I also wonder what type of malicious software they think about, and wouldnt some anti-virus etc. software detect this?
But regardless, this claim does kinda collide with the statement that one of Sony's representatives said during the May 1st press conference, where it was mentioned that the hackers used a "known to the world" vulnerability. I assume that he wasnt referring to a phishing attack at least.
I also wonder if Sony runs all their webistes internally or if there are 3rd parties that are in charge of some of the sites. But anyway, they need to improve their security for sure.
ElRenoRaven
Member
Luckyman said:
It's not PSN really. This article just shows how Sony in general lacks any security sense at all among all their networks. It shows a fundamental flaw within the entire company.
test_account
XP-39C²
"Lacks any security sense at all" is a bit exaggerated in my opinion, but i do agree that Sony needs to have more focus on the security. Hopefully Sony has learned a valuable lesson from all of this and will have a big "clean up" on their servers as soon as possible, not just the PSN servers, but every single server that they have.PsychoRaven said:
How About No
Member
lolypoly said:
How many PSN cards would you bet on that?!
It would suck to have to breakdown and build a pc to play it the way it was meant to be played but it would be 10x the gloriousness.meppi said:
The Bumgarner thing could be irritating for Sony as a global company but doesn't seem to have any direct relation to PSN other than general incompetence. Makes the powers that be look stupid too I guess.
RustyNails
Member
I don't think Mr Bumgarner should be talking about security holesjigglywiggly said:
NEOPARADIGM
Banned
Hammer said:
Official word atm is no, store comes later.
corporate cheerleader
Member
RustyNails said:
So he garnered all that attention for nothing? Bummer.
test_account
XP-39C²
Yeah. I dont really know what to belive. If the hackers had to rely on a phishing attack, it shows, or at least it seems, that the main security on the PSN servers was good enough. But if it was a phishing attack, then this doesnt really add up to being a sophisticated attack as you mentioned (it could have been an extremely well done phishing attack though, so that it looked very authentic, but still, it doesnt seem to be too sophisticated on a technical level), and it also kinda rule out the statement about that a "known to the world" exploit was used. I wouldnt directly define a phishing attack as an exploit at least.Fugu said:
EDIT: And if it was a phishing attack, does Sony really need over 3 week to rebuild the PSN security because of this? I dont know that much about server security, but that sounds a bit wierd to me at least, that it would take this long to fix something if only a phishing attack was done. But i dont know.
CadetMahoney
Member
I tought it was Burngamer at first, had to take a closer look.jigglywiggly said:
DrForester
Kills Photobucket
EagleEyes said:
I still think full functioning PSN will be an E3 announcement. If the online play is up and running well soon and goes till E3 without a hitch, it would be a nice time to return the store, and announce the freebies people are getting.
Used-ID
Member
EagleEyes said:
Urk. I can see the entire Sony keynote being about the PSN outage - with 3-5 minutes of "We're launching new hardware in Japan later this year, and we have some games that are coming out in a few months that you can play demos of on the show floor."
I can also see Microsoft spending 10-15 minutes on how Live is secure, etc, etc. While Nintendo just tries to remind everyone that they have a way to play games across the internet.
polyh3dron
Banned
IT'S NEVER COMING BACK
CadetMahoney
Member
it's being released in stages. "A few days" per stage right up to E3 where multiplayer will go up live on stage and fans can proclaim "Sony won E3! PSN is back up!" Makes sense really/Air Zombie Meat said:
vikingvessel
Member
Used-ID said:
[unless I have been missing it] It seems that the other two heavyweights
have taken the high road regarding this ordeal for the most part, so far.
Impressive, considering how cutthroat the industry can be under normal circumstances.
E3 hysteria may be a much less pleasant beast...
Susurrus
Member
steadfast said:
Why the hell couldn't I find this before? :/ Sony doesn't like my APO address so I have been buying cards at the BX.....
Thanks for the link, now I don't have to leave my apartment to give Sony my monies.
laziness ftw
Ratchet Deadlocked is (though nobody is online ;alr1ghtstart said:
cr_blah_blah
Member
PSwheN?
Urban Scholar
Member
Totobeni said:
...ahaha. I think it's what? Five years and counting?
- Status