Slashdot Mirror
Sony Officially Blames Anonymous For PSN Hack
H_Fisher writes "In a letter to Congress, Kazuo Hirai, chairman of Sony's board of directors, blames hacker group Anonymous for making possible the theft of gamers' personal information. 'What is becoming more and more evident is that Sony has been the victim of a very carefully planned, very professional, highly sophisticated criminal cyber attack designed to steal personal and credit card information for illegal purposes,' Hirai wrote. He also indicated that Sony waited two days before notifying the FBI of the theft."
I officially blame Sony for being PSN hacked.
When the foot seeks the place of the head, the line is crossed. Know your place. Keep your place. Be a shoe.
They're on to us!
"carefully planned, very professional, highly sophisticated"
These are not words I think of when discussing Anonymous. Give me a break.
-------
"Every artist is a cannibal, every poet is a thief."
First post?
They called Anonymous "very professional, highly sophisticated"
Dont have the competency or skill to run your network correctly?
Dont know who else to blame when your on the hook for a class action and liability in the billions?
Blame Anonymous.
hey!
I didn't do crap!
While a particular group may have been responsible for the data theft, Sony is still responsible for the irresponsible storage that they used to enable the theft. Good (industry standard) practices around credit card retention, such as gateway tokenization, would have drastically reduced the financial implications. There would still have been privacy implications, but by not storing card numbers they'd actually have made the information much less appealing to hackers as well.
You're special forces then? That's great! I just love your olympics!
The fact that the attack involve the theft of credit card data, as opposed to just shutting down the network, screams "not Anonymous" to me. You know, given how Anonymous tends to just shut things down with DDoS attacks, or occasionally overwrite a web page with one that spreads some message.
Palm trees and 8
Sony == desperate weasels
Nuff said.
Anonymous already denied it and, AFAIK, they don't do sneaky attacks and do not steal personal info.
Scientia est Potentia
"Sony said it was not sure whether the organizers of the two attacks were working together."
That doesn't sound like an official statement of blame. But hey, reporting the truth isn't as important here as slanting it to support peoples pet causes.
Doesn't sound likely to me. Anonymous have done many things, but stealing user information hasn't been one of them until now.
I wonder if Sony did it themselves with the intention of pinning it on Anonymous?
Some more perspective and info on this story available @ http://gaming.operationreality.org/2011/05/04/sony-to-congress-we-found-anonymous-file-on-server/ Summary: "This proves nothing" :P
They got what they deserve. Users were hit too, I admit, but at least that will teach them not to use sony again.
Some how none of that seems to point to Anonymous in any way.
we don't have a clue
Sony said on Wednesday that Anonymous targeted it several weeks ago using a denial of service attack in protest of Sony defending itself against a hacker in federal court in San Francisco.
The attack that stole the personal data of millions of Sony customers was launched separately, while the company was distracted protecting itself against the denial of service campaign, Sony said.
Sony said it was not sure whether the organizers of the two attacks were working together.
So they know Anonymous DDOS'ed them, and Anonymous have admitted this too.
They also were attacked separately where the theft took place. They don't know if these groups were working together. They blame the latter on Anonymous too. How did they draw that final conclusion??
Beware: In C++, your friends can see your privates!
You know how I know this isn't anon? FTA:
"very carefully planned, very professional, highly sophisticated criminal cyber attack"
Not Anon.
This isn't their style.
Hacker group?
Oh please, give me a break, there are two people, at best, who can be called a hacker on 4chan.
If Sony are going to publicly come out and blame Anonymous for the hack, I hope they are prepared for the retaliation that may become of it if in fact it turns out Anonymous had nothing to do with it. Remember the FBI Guy? hehe
Whilst I was admiring the gentle sway of her shapely derriere somebody stole my laptop!
Yeah, neckbeards who spend all their time jerking it to manga and posting cat pics and whose idea of "hacking" is this could totally pull something like that off.
Indeed in sony official statement, they state that they used same master key in PSN Its hard to blame them, because the key was top secret. Its like versign loosing its master key.
When you fuck people over, expected to get fucked back, Sony!
Can't anyone do anything and claim "Anonymous?"
Isn't that the point of being Anonymous...
no one knows who you are...
and anyone who wanted to could claim to be the same "anonymous" that you are...
If anything this is an easy out for someone to point a finger at by Sony... I mean why not, doesn't matter who actually did it the person/group is in fact Anonymous...
They add Slashdot to their complaint, for this poll? Sheesh!
The attack that stole the personal data of millions of Sony customers was launched separately, while the company was distracted protecting itself against the denial of service campaign, Sony said.
Because we all know that keeping your network secure involves someone personally inspecting each packet as it comes in. With all of Sony's packet inspectors distracted by the DDOS the hackers were able to sneak their packets through undetected.
Can someone point me to where "Sony Officially Blames Anon" is? FTFA, it says it blames indirectly, but there is nowhere a link to an official Sony update nor there's a reference to Sony's indirect blame. Journalism at best!!!
Fox was right! Anonymous is a bunch of hackers on steroids!
You have to admit...blaming Anonymous for the attack sounds a lot better and less embarrassing as stating "Yeah, some 17 year old kid in Toledo managed to hack us and pull all your private information because we don't have our s&*t together." I don't blame them for pointing at Anonymous. After all, Anonymous pointed their finger at Sony not but a month prior.
Wise men say, "Forgiveness is divine, but never pay full price for late pizza."
Sony once had rootkits in audio CDs, now someone gained control of the psn. Not sure who, so blame the obvious and occaRAM's razor needs sharpening. :)
But in all seriousness my hopes and prayers go to Sony and Japan for the damage done by tsunamis and other things. This is nationwide and needs to stop these break-ins to web sites.
Is it anonymous? I am not sure. I am not sure who or what it could be. As zombie botnets dominate the Internet it could be anyone. Even viruses we haven't detected yet or hide from scanners by infecting them. Whomever is doing this, please stop, this is not the way, the truth, and the light.
Yes I know Slashdot, maybe some disagree maybe some agree. But whomever did it, they will be caught as evil always brags.
I, for one, will wait for the tape of anonymous's 'confession', which I'm sure will surface at any moment, then we can send in the navy to raid the compound
For justice, we must go to Don Corleone
Sony: but, but, but, it was "them".
Rational People: how do you know it was "them"?
Sony: because they are the most convenient target of the day...
Rational People: ah....
That's the translation of Sony's Japanese doublespeak. (Notice it resembles Toyko Power's doublespeak of why the nuclear meltdown is not a danger to nearby customers.)
My AC stalker: " I personally agree with your posts most of the time, but that won't keep me from modding you troll"
Logical Fallacy on Sony's part. Post hoc ergo propter hoc . Or as many on /. like to say "Correlation is not causation".
Buffalo buffalo Buffalo buffalo buffalo buffalo Buffalo buffalo! http://goo.gl/J9bkO
their hearts are not *truly* klingon.
either that or the russians
An article on gamespot http://www.gamespot.com/news/6312141.html says that the evidence they have is a file named "Anonymous" with the content "We are Legion". What a conclusive evidence.
There is no 'Anonymous.' It's just a term that's been widely co-opted. Sort of like 'Al Qaeda.'
One man's -1 Flamebait is another man's +5 Funny.
I think Anonymous is going to find out that their prized anonymity is a double edged sword. If no one can speak for anonymous, how can this ever be denied?
That's Anonymous' trademark!
Guess a free month of Playstation Plus wasn't good enough for the consumers...
oh, wait, no I'm not...
I'm a jelly doughnut.
the preceding comment is my own and in no way reflects the opinion of the Joint Chiefs of Staff
Sony may have blamed Anonymous for the attack, but they're not accusing Anonymous of executing the attack itself. They said the following:
Granted, Sony can say anything to cover their butts, but Hell... The hackers could have just as easily left an "Osama wuz here" file. Would that mean Al Qaida definitely did it? Could they abandon any further investigation and blog posting because the dude is shark food now?
There can be only one!
In the letter there is a part which says:
"We discovered that the intruders had planted a file on one of our Sony Online Entertainment servers named “Anonymous” with the words “We are Legion.”"
It's not much of an evidence in my eyes, but at least it's more then 'because we say so'.
Quite an old trick - if you want to attack someone bigger than you, and make them look stupid, tell them your name is "nobody" first. As in Help! Nobody is attacking me!
I got a letter in the mail yesterday May 3rd advising me my info may have been hacked. Weird since I don't have a play station and have not played an online Sony game in over a decade (12 years maybe more) and then I canceled my subscription. Which brings me to a question why is information that old still being kept where it can be cracked?
I didn't do it! ...and I'm not a coward for that matter.
Why point blame at Anonymous. The Russians love this kind of hack and apparently China also wishes to have such an illegal industry as well. Before anyone spouts off about blame they need some serious proof.
Sony said on Wednesday that Anonymous targeted it several weeks ago using a denial of service attack in protest of Sony defending itself against a hacker in federal court in San Francisco.
Meanwhile in reality:
Sony said on Wednesday that Anonymous targeted it several weeks ago using a denial of service attack in protest of Sony attacking a hacker in a hopeless attempt to control information that had already slipped far out of it's control in federal court in San Francisco.
Sony, what did you think was Going to happen when you wage war on hackers? Idiots go bend over on your sword
Looking for credit card info? Anonymous tends to do things for idealogical reasons, AFAIK. There may be some overlap, but this sounds like organized crime. And yes, known vulnerabilities are things you should not be vulnerable to if you have credit card info for even two million people.
They hired professional investigators, what, last night to track down who did this, and then this morning, ta-da, it's Anonymous!
Anon is becoming the al-Qaeda of the Internet - the generic name used for "anybody who does this sort of thing." Hackers ARE Anonymous, in the same way Curads ARE "Band-Aids" and Puffs Plus ARE "Kleenex" and Sharp copiers ARE "Xerox machines".
Getting anonymous mad at them might not be the best strategy for beefing up the image of their security, though.
-- IANAL, this isn't legal advice, and definitely isn't legal advice for you. Also, Squee!
Ever since I first created my PSN account, I remember the site asking me if I'd like to have them save my credit card info for future use and I always said "no". (Really, how often do you actually buy something through PSN? I guess I'm not as hard-core of a gamer as some people, but I only bought a few games from it in the 3 years or so I've had my PS3. It's not that big a deal to re-enter my info with each purchase.)
Now, this hack just reinforces my belief in not giving info like that to companies to store for me. The extra bit of hassle getting out your credit card and entering the digits and expiration info is a lot less than the hassle of dealing with card fraud.
I'd say that trying to blame Anonymous for a "carefully planned, very professional, highly sophisticated" attack is at best a stretch with no evidence, and at worst a purposeful misdirection for shoddy security mechanisms.
If I was a betting man, I'd say that this spin will result in more of Anonymous' attention being directed at Sony.
Sony, if you wanna feel what its like when 3,400,000 anonymous users really want to hurt you at the same time.....just keep poking the bear.
I hate linking to this POS paper but here's the story http://www.theprovince.com/life/Privacy+czar+scolds+Sony+calls+power+levy+heavy+fines/4725743/story.html
by TheSpoom (715771) Uncaring Linux user here. I have nothing to add to this but please continue. *munches popcorn*
Even if they didn't explicitly blame Anonymous for the attack to even talk of them just shows ignorance.
The loosely formed group sometimes known as "anonymous" are not a for profit organization.
If the goal was $$, this was probably done for bid, or by groups looking to make a profit off the results.
Not a political or statement based event.
Lame.
Sony did not blamed Anonymous, they published that they found a file named Anonymous on their website and that we may never know if Anonymous member were duped to provide cover with their denial of service attacks to the person/group that exploited the vulnerability
Now that he's claimed to be dead, Sony can turn the lights back on. The connection is obvious.
Sony has been the author of a very carefully planned, very professional, highly sophisticated enterprise designed to obtain personal and credit card information for its own secret purposes.
So, meh. The data held by Sony was already in the hands of bad guys.
not sure if there's a paywall up, but WSJ has an article entitled 'Sony Says Hacker Left Taunting Message' in it, it says Sony is claiming the hackers left a file on the server entitled Anonymous, with contents saying 'We are Legion'.
Sony said on Wednesday that Anonymous targeted it several weeks ago using a denial of service attack in protest of Sony defending itself against a hacker in federal court in San Francisco.
Since when does taking a hardhacker to court constitute "defending yourself"? They might be defending their DRM or EULA or something but the article makes it sound objectively unreasonable for anyone to be upset with them...
Sendou Wave Kick!!
Can anyone provide a link to ANYTHING that shows that Sony lays direct blame for the attack on Anonymous?? Anywhere at all?
The only time I've seen a claim that Anonymous was directly responsible for the Sony hack was from the Tech blogs & forums. Sony itself has never claimed anywhere that they lay the blame for the attack on Anonymous. In fact, Sony has gone on record stating that they do not know who is responsible. SlashDot again takes an implied link and twists it into a fact, par for course.
Sony claims to also have found a file planted on their servers named "Anonymous" containing the text "We are legion". So either it was planted by an Anon or by a sympathizer. Aside from that Anonymous is never directly implicated by them.
Geez, next people will be claiming Anonymous has been targeting Sony's employees and family members, or organizing protests at Sony stores, or launching DDos attacks against PSN. Ridiculous to think they might be responsible for this attack right??
I thought Sony's incompetence made possible the theft of gamers' personal information.
Sony said on Wednesday that Anonymous targeted it several weeks ago using a denial of service attack in protest of Sony defending itself against a hacker in federal court in San Francisco. The attack that stole the personal data of millions of Sony customers was launched separately, while the company was distracted protecting itself against the denial of service campaign, Sony said. Sony said it was not sure whether the organizers of the two attacks were working together.
Anonymous is a lot of things, but I don't know that very professional and highly sophisticated would be on the list.
[Joe Downloader] it's not theft. It's copyright infringement.
[Joe NoSuchThingAsPrivacyOnTheNet] people shouldn't complain that when they put information on a third party network that said information can become public.
[Joe HackerVsCracker] ... ffs not this again.
Slightly more on-topic: SONY may be in no small part culpable, but they're not responsible for the breach and dissemination of the data. Whoever made their way into their systems, is.
SONY is also handling this much better than I had expected. Paying for people to replace their CCs? Head honchos publicly showing humility with a deep bow? Offering a free time of premium content + free days for every day that the network is down?
Usually you're lucky if you catch a small ad in a major newspaper where the company says 'my bad' and recommends you contact your credit card issuer.
If Anonymous had stolen the data, it would be on TPB/Bittorrent right now. Remember HBGary?
Where crime is viewed as a public service, while failing to make oneself invulnerable to crime is viewed as a crime. Sound crazy? Not on THE INTERNETS.
"Outdated business models" is code for "I don't like paying for things, but want them anyway"
How does a hacker steal several gigs of data in a few minutes in the midst of a DDoS attack, when the server are too overwhelmed to answer outside requests? Whatever ISP this guy has that can give a download speed of above 1 gig per minute, I want in on their service!!!
Sony would have blamed Bin Laden had he not been killed by the US earlier this week. They had to find some other scapegoat so that's why it took so long for their official blaming.
It was not Anyonmous, it was John Doe...
Good luck proving it was Anonymous. Also, Sony must share some of the blame for not preventing/dealing with security breaches effectively.
Twinstiq, game news
Doesn't anyone find it the least bit ironic that a company like Sony that spent so much time and money on DRM and effecting security to limit and put security over its paying customers, then does such a crappy job at overall network security that some jerks hack their entire network and make off with personal information, credit card numbers, etc... but ohhhh no, you better not pirate that 1$ disk of Madden Football 14.
Maybe if they spent as much time securing their stupid network as trying to enforce DRM on paying customers they might not be in the mess they are in.
I mean how is it, that the game is encrypted, on an encrypted system, using keys etc... and then online verification of that encryption, but your bloody VISA number is in a GD text file on one of their servers or something...
Hbgary, paypal, mastercard all got hacked by anon and no one blamed them? I mean hell hbgary because is infact a cyber security and forensic company contracted by the government themselves so if a company specializing in security gets hacked why is it evil for sony to get hacked also. Is it because encrypted credit card info with no ccv codes were stolen? How does that make it worse? Sony didnt hand anyone the info or do anything against anyone. They were hacked and had shit stolen and everyone blames them?
I mean is everyone just pissed they didnt come out with it sooner? Or did anyone stop to think maybe they waited to find out the extent of the damage and have their facts straight before they said anything?
Your all hypocritical morons for blaming them.
i wonder if sony can sink lower. default, problem-free blaming - screwed up ? blame anonymous. nuclear accident ? blame anonymous. martian invasion ? blame anonymous. i can see unlimited use for this 'blame anonymous' thing.
Read radical news here
I just the FBI an anonymous tip about Anonymous!
I never could understand the attitude of blaming the victim a la "It's Sony's fault they got hacked...". Or even saying Sony was asking to be hacked due to their trial against geohotz. I don't blame rape victims for being raped or suggesting they were asking for it. Sony is trying to run a business and it is clear that criminals broke the law in a big way to access their servers. I can only imagine that with the FBIs involvement, Sony will be going after a lot of individuals who were ever involved with anything Anonymous related.
Are you saying Anonymous is Al Qaeda? :)
Therefore, by the (faulty) logic you're using, you're just a cow with a keyboard - osu-neko (2604)
Isn't that what scapegoat means? Sure, some other nameless party may have framed Anonymous, but Sony is using them as the scapegoat.
No, no shame at all. That was very deliberate!
I chose not to have it remember it because I allow others to use my PS3 and not my CC.
Now you're relying on Sony not to save information on you just because you told them not to save it. It might work, but I wouldn't bet the house payment on it.
"When you have eliminated the unacceptable, whatever is left, however improbable, must be the truthiness" - Holmes
The only Hirais I know are a bunch of lying, crazy, assholes with delusions of grandeur.
> [Joe Downloader] it's not theft. It's copyright infringement.
Actually, I would call this an instance of data theft. I, too, believe that calling copyright infringement "theft" or "stealing" is ridiculous rhetoric, but there's a difference between music/movies/software available on BitTorrent and personal information kept on Sony's servers. Copyrighted material is meant to be available to the public, even if it's not supposed to be distributed over file sharing networks. In theory, anyone can legally obtain a copy and be able to view it to their heart's content. Sony customer data, on the other hand, is (supposed to be) carefully guarded and kept safe from unauthorized viewers (which I imagine would be just about everyone except certain Sony employees). The unauthorized copying of the latter is, in my opinion, much closer to actual theft, although I nonetheless feel a small chill using the word theft to describe the copying of data.
Furthermore, there is no copyright protection for personal information, so that rules out infringement as well.
"very carefully planned, very professional, highly sophisticated criminal cyber attack"
I'm sorry, this doesn't exactly scream anon. When I think of anon I think of idiots who spam memes.
I find it sad that Sony still doesn't have a clue who broke into their systems.
What do I know, I'm just an idiot, right?
So they're saying it was Ted Danson?
Will the real Anonymous please stand up?
I repeat, will the real Anonymous please stand up?
We're gonna have a problem here...
We both said a lot of things that you are going to regret.
So they are terrorists! I knew it!
if naked pictures of sony where placed on it's facebook page... maybe then i would believe it was Anonymous
SONY is just making more bad decisions regarding security like they did with the SONY rootkit.
http://en.wikipedia.org/wiki/Sony_BMG_copy_protection_rootkit_scandal
"If any question why we died, Tell them because our fathers lied."
There's more of you?
PlusFive Slashdot reader for Android. Can post comments.
anonymous 1: "hey look at this, 'server'. Looks like a hidden server mode for ps3?"
anonymous 2: "lets make a BIOS mod to enable this hidden feature"
anonymous 1: "Holy crap! It joined sony PSN cluster and is receiving job and data allocation"
anonymous 2: "and it is user data, plain text, cards, bank accounts"
anonymous 1 & anonymous 2: "Ohhhhhhhhhhhh YEAHHHHHHHHHHHHHHHHHHHHHHHHH"
Except now you don't even have to blame Al Qaeda. The US government got away with lying to the world about Iraq, so there's no need to blame anyone anymore. It's just assumed they can do whatever they're doing it to protect us. Say you're protecting people's freedom and you can get away with anything. It doesn't matter what the facts show.
My beliefs do not require that you agree with them.
Sony claims to have found a file named "anonymous" with the contents "We are legion."
The thing about Anonymous is that anyone can claim to be a member. Also, it would be very useful for some blackhat to give people a false trail and send them down a dead end while they cover their tracks. So a file like that would be a great thing to leave behind if you wanted to throw people off.
But who knows?
GUTEN TAG, Wii Gehts, Wednesday (NTN) — Sony has revealed that the Playstation Network security breach, which compromised 24.6 million credit cards, was entirely the work of evil hackers from Anonymous, and nothing to do with their own incompetence, honest.
"We discovered a file making a clear reference to 'Username unknown,'" the company said in a letter to the US Congress on Wednesday, "and a blank user icon which therefore was anonymous. D'you see what that means? It means George Hotz and his hacker friends are loathsome criminal masterminds! So obviously we can't be held liable for negligence in the face of forces like these. In conclusion, give us money."
The letter details the company’s actions over the past two weeks. It says Sony acted with "care and caution" in deciding how to act and how long it thought it could get away without telling anyone. "We did not want to cause confusion and cause customers to take unnecessary actions, such as stopping their credit card payments to us."
"We have suffered a very carefully planned, very professional, highly sophisticated criminal cyberattack, which has led to people committing the heinous hate crime of jailbreaking their PS3s. In accordance with our campaign contributions, we ask that you impose the death penalty for such offenses."
The letter concluded that the breakin was quite definitely the work of Anonymous. "We were going to blame Al-Qaeda, but we figured after Monday that you probably wouldn't buy that."
http://rocknerd.co.uk
I would blame Anon as well. While I appreciate, to a degree, what Anon "tries" to do, a group that has no structure or accountability within it's own ranks is the perfect place for a seasoned "professional" to blend in and find the right opportunity to attack a vulnerable target. What Anon did to Sony hurt us regular users of Sony's service and i wouldn't be surprised if a member of Anon (or several members) found a security hole during the initial DDoS attack. If it wasn't for Anon, this whole mess might not have happened... however, that doesn't mean it wouldn't happen in the future and Sony needs to re-evaluate it's network security so this doesn't happen again.
Probably has already been said, but the more one reads the news bursts on the whole affair, it reads more like an inside job or someone had inside help.
There's a great scene in the Kirk Douglas film "Spartacus", where, after the defeat of the slave army led by Spartacus, the Roman general, who still doesn't know him by sight, wants the man or the body identified by the remaining prisoners, or all will be executed.
Spartcus (played by Kirk Douglas) is about to stand up, give himself up and save his men. But two men next to him stand up and shout in unison "I am Spartacus!" And then wave after wave of prisoners stand up and also shout the same. It's a powerful, moving scene because it's no longer about one man, it's about the dream of freedom to everyone there.
It's clear that Sony has no F'ing clue who or what "Anonymous" is, they are just going after a convenient scapegoat so they can sue some random people they might have the IP address of, at the time of the attack.
It's up to all of us to stand up and shout "I am anonymous" (or "Blank is beautiful" to those of us who remember Max Headroom), and join our voices in unison, because it's no longer about one person, it's about freedom for us all.
If telephones are outlawed, then only outlaws will have telephones.
Having a quasi-organized group that can "encourage" companies to stay away from practices which harm consumers (i.e.: Sony v. George Hotz) is an important part of keeping the mega-corps in check in the information age. Companies speak only one language: revenue. If they do the wrong thing because of their desire for higher revenue, there needs to be an instrument of correction that can affect them at that level. And having that instrument operate apart from the government which the mega-corps' lobbyists already bought is the only way. Internet retribution is grass-roots civil disobedience.
...very professional, highly sophisticated criminal... /b/tard...
Obviously no one from Sony has ever met a
Sounds a "Wee" bit twisted!
Having tried to steal people's PC's (rootkit) and having spent decades trying to limit, cut up, or cut off people's rights, and their own music players (MP3) and having sold a console only to rob its users, incriminate its users, and to continue to erode people's rights by setting forward constant legal warfare - I have zero sympathy for Sony.
When they embarked on their rootkitting escapade trying to hack my PCs, and those of friends, states, governments, and states, charities and the universe, the FBI and the legal system did nothing. When someone messes with them, they want to destroy his life and try to create a false legal premise and one law for them and another law for their users (the public). Sony have a theory that they can cheat, bully, and legalise their way to screwing the shit out of anyone and everyone.
Their whole management have a hateful level of arrogance and despicable abuse of their own customers. I have a bit of sympathy with the end customers and their losses. But seriously, stop buying crack off these shits.
I bet they had fundamental and absolute flaws in their setup when 'protecting' end users anyway, as end users are scum to sony simply existing for the next fleecing scam they can come up with.
In the meantime, seeing them get a dose of their own unpleansant medicine for screwing with the universe, I can only say it happened to a bunch of people who fully deserve it. I hope its terminal. And it ends them. Thats what they deserve.
in this comment thread. All it takes is one person slacking off at his job for this to happen. New or Old threat, this can happen. It happens to a lot of companies, websites, etc. Back when SQL dropping was the cool thing to do, it would happen a lot and that was a VERY Well known bug and a VERY EASILY fixed one. How many big companies got blamed with such publicity?
As much as you cry, anonymous is sophisticated to a degree. Most people are just robots, with a few at the 'top' of the chain actually controlling the apps that they use, the zombies, if you will. Botnets be damned, they have enough 'followers' to be used as such. The people who know what they are doing that identify themselves with the mentality and the morality of anonymous could easily have pulled this off either in direct reaction to GeoHotz retardedness or as an additional strike due to Anon already DDOSing the shit out of Sony. There are too many variables to argue against it, or for it, for that matter.
Stating this, I am a fan of Sony, and I think they were immature in their open letter stating that they believe Anonymous is responsible for this.
1) It's retarded to justify their existence/non-existence by referring to them by their requested name
2) they WILL know who did it, or have a valid trail, soon enough. The investigation occurring should provide good grounds for that.
'Anonymous' is just that, anonymous, and primarily full of people who refer to themselves as legion, as if the people who they feel they 'help' aren't the same people who provide them with scripts that spam others forums. The majority of them are incompetent and unorganized, as discussed in earlier comments, but the few who know are capable of what has occurred. It is not difficult to exploit a vulnerability once it has been discovered, and I would put a few dollars down that it is due to the uncovering of the vulnerability that it has been exploited.
I did research on the group, I watched the actions they pulled to cause minor havoc in a few people's lives. I watched them investigate into the abuse of a cat and discover who did it, and I've watched them exploit the insecurities of a girl, over and over, to get pictures to spread on the internet. Anonymous is not a group, a legion or any sort of organized culture, nor do they have actual figureheads, more-like people who want to feel important.
I am posting this as AC because the only way to research Anonymous is to do the obvious, which I am not ready to publicize that I regulared that site for a while. The horrible content of the website and a specific board is shaming. I gave up on the research, I couldn't stand a group of people posting horrific content just because they were anonymous. Humanities depths to do certain things are just too much.
TL;DR: A corporation isn't normally to blame, but the one person who let it slip. Anonymous isn't a true organized group, but a few groups who don't know what they are doing for the majority. There are people who know what they are doing, and exploiting vulnerabilities is easy.
THE END.
Sony writes a letter that blames Anonymous for cracking into the Play Station Network about the same time when security at Osamas hide out is compramised through PSN? And we see a problem where?
Credit card numbers were the primary target and this was a sophisticated attack against two of Sony's networks.
Anonymous just does childish crap like DDoS. What happened to Sony was clearly the result of professional criminals.
When they finish their analysis I bet the offending IPs who downloaded the information are all from Eastern Europe or China.
Or consider this; never in the history of "anonymous" has it been a goal to commit crime for profit. Why start now? Sony wants a scapegoat because they don't want to admit they were taken down by criminals exposing the flaws in their crappy system.
very carefully planned, very professional, highly sophisticated
Is this supposed to be the same "Anonymous" that's supposed to have its home on 4chan's Random board? 'Cause none of these qualities bring those users to mind.
I suggest Sony look elsewhere. I'm pretty sure "very carefully planned, very professional, highly sophisticated" and "Anonymous" are mutually exclusive possibilities.
Let q be a radix > 1. I am in ur base-q, killing 10 d00ds.
due entirely to Sony's fuckwitted lack of security concerning sensitive data, I have had to take measures to protect my identity
Fuckwitted, indeed. By making this (dubious sounding) claim, they have just poked anon with a stick after it has just been demonstrated that they have a major security problem. There is a fair chance that anon has a sizable population of already irritated PSN users. In light of the whole HBGary fiasco, does this REALLY seem like a wise thing to do?
GG Sony, you are proving to be more entertaining by the day...
HA! I just wasted some of your bandwidth with a frivolous sig!
Yeah, SONY really dropped the ball here. I would have chosen China for this.
I was thinking about getting an X-Box 360, but now you just helped me make my decision as I am also going to go ahead and sell my ps3
There is a new movie coming out about William Shakespeare, called "Anonymous." As soon as I heard about this, I figured that there would be some sort of backlash by Anonymous. Then I saw that it was made by Sony Pictures. http://www.anonymous-movie.com/
Hostes futuri sint socii.
I choose to blame this guy. It's about as accurate as targeting an umbrella group alias over a text file that provides no real identifying intelligence, and he's far more entertaining. IMHO, I would place this sort of thing under the heading of "fiddling while Rome burns." Sony needs to be reacquainted with the term FAIL, then they need to demonstrate that they know why they're a fail whale, and that they will fix whatever the hell went so desperately wrong with their information security.
Accept no substitutes.
It's funny because anonymous ate my homework just the day before
Anonymous = New Boogeyman = convenient scapegoat
SONY = New Lameness
This is such bullshit. Sony never "blamed" Anonymous.. they merely stated that they found a file titled "Anonymous" with the contents "We are Legion". NO WHERE DID THEY SAY THEY BLAMED THEM. In fact they point out that they still don't know who did it. More likely the file was placed by the person(s) who did hack to the network to distract the people looking for them. Come on guys, at least read the shit you post.
Sony should die in a fire.
If you post as an AC, don't expect me to spend a mod point on you.
I find this amusing, because that michael crichton story "rising sun" has sean connery say about the japanese, that they don't scapegoat when they have problems, they just sort them out and then don't worry about it. Sucks to be sony, it's quite dishonouring that they stoop to this level. Whilst the bowing was somewhat a mea culpa, this in a way takes it all back, back to evil empire sony. In any case, i don't think anonymous as a collective did it, i think it's one of two options, either someone from anonymous seized the opportunity and decided to keep on going after anon officially broke off, or other hackers, which is very highly likely, since it was a fairly public ddos, kept an eye out, and saw the potential, when members started pointing out details of the problems with sony's network.
Anonymous spokesman on Sony hack: "It wasn't us"
The unofficial spokesman for the Anonymous vigilante group has shot down an implication by Sony that the collective was responsible for the PlayStation Network breach.
"They could've just as easily left documents saying, 'Congress. We investigate steroid use in baseball,'" joked Brown
"Anonymous has no record in engaging in credit card theft and resell, and if we did, the FBI would've already come down on us."
Am I the only one who wants to know what hash function Sony used, or if those passwords were stored in plain text?
my 11 year old nephew can understand the concept of anons.
good job pissing everyone, again.
"...carefully planned, very professional, highly sophisticated..."
That really doesn't sound like Anonymous.
to make privacy and anonymity a federal crime. Going on-line? "Papers, please".
Anonymous is like the Al Qaeda of the internet. You can blame pretty much everything on them, whether they did it or not. I mean, it benefits both sides in these cases. Sony can just yell "he did it!", while Anonymous take credit, whether they did it or not. It's a win-win situation for both sides. Much like how terror attacks are dealt with. Except replace Anonymous with Al Qaeda and Sony with the US Government.
its sony s fault because u did not had a back up sever
So who is Sony blaming for the SOE hack? /b/?
Someday, you're going to die. Get over it.
I doubt this was Anon, and if it was, they will never admit to it - they'll just blame ebaumsworld. Sounds like Sony trying to cover up their massive failures and continuing ignorance to what is going on and/or what customers want.
We should be fucking happy if it's anonymous they are on the customers side. Offcourse it's just easy to blame anonymous. That's like saying: ''Terrorists attacked the Twin Towers''.
E-yah E-right
Sony was running an old (and unpatched) version of Apache and had NO FIREWALL in place.
Um... "very professional"?!?! My 11 year old nephew could have hacked them.
Sony is blamed because they didn't have proper precautions for such attacks on their servers. We all know that if they kept their systems up to date, then things would be hardly possible to hack into their server systems. At the same time, we can't be sure about blaming Anonymous for this incident because many can be involved in this issue. The ones pointing the fingers on Anonymous are Sony and some other groups framing them by placing a file with their group name on it, but no one can be exactly sure about that because Anonymous, eventually, are a group of hackers so it's possible that they've done it and lied about it.
their best Bravia TVs are beautiful. Hate them all you want, but their top-end products can be breathtaking.
You know, there are lots of decaf brands that are just as tasty as the real thing. I'm just sayin'...
For a company that is as old and large as Sony is... They should have known better. They should have had a firewall. They should have done their patches. They should have hired competent employees. A lot of people have and will continue to stay away from them as a brand because they have put shoddy overpriced products onto the market for well over 30+ years and then do enough marketing to make a number of people think that it is good. This is completely their fault. We all know that if the "hackers" that really are good at what they do wanted to get into Sony's systems... Sony would never know that it even happened... ever.
They are grasping to try to stay alive as a company. They have not maintained good customer relations. They think that one month of playstation plus and some content to download is going to save them from loosing what little amount of customers they still have. This poor handling and the prior bad company management might very well put an end to a company that has been around longer than I can remember.
Boot to the head Sony.
Anon said on multiple occasions it's not them though. Who's lying here?