Sony Suffers Yet More Security Breaches

← Back to Stories (view on slashdot.org)

Sony Suffers Yet More Security Breaches

Posted by Unknown on Wednesday May 25, 2011 @02:45AM from the flogging-a-dead-sony dept.

Oldcynic writes "As Sony struggles to restore the Playstation Network we receive news today of another breach, this time at Sony Ericsson in Canada. 'Sony Corp. spokesman Atsuo Omagari said Wednesday that names, email and encrypted passwords may have been stolen from the Sony Ericsson Canada website, but no credit card information was taken.' Another group managed to penetrate Sony Entertainment Japan yesterday as well. I almost feel bad for them.

21 of 288 comments (clear)

Min score:

Reason:

Sort:

Was it really worth it, Sony? by elrous0 · 2011-05-25 02:46 · Score: 5, Insightful

I've always said that Sony is the most control-freak tech company in the world (making even Nintendo and Apple look sedate by comparison), a company that would happily shoot itself in the foot rather than lose even an *inch* of control of it's media, it's IT, or its technology.
From the rootkit fiasco, their obsessive lockdown of blu-ray (which of course, was cracked), and (many) assorted other lawsuits--Sony has established itself as the kind of company who would happily put a spycamera in everyone's home to make sure that no one is watching a pirated copy of Spiderman 3 (though why anyone would want to watch even a free version of that or just about any other Sony movie is beyond me).
But now they've removed a little-used and fairly innocuous Linux feature from the PS3, and then busted a guy who jailbroke the machine in response. Not only did they send in thugs to kick his door down and take all his shit (then strongarm him into admitting guilt to something that, before the DMCA, wouldn't even be considered a crime), but they even went as far as to try to force ISP's to hand over the identities of everyone who even DISCUSSED the hack on his website or blog.
Well, was it worth it, Sony?

--
SJW: Someone who has run out of real oppression, and has to fake it.
1. Re:Was it really worth it, Sony? by somaTh · 2011-05-25 02:54 · Score: 4, Funny
  
  Sony has established itself as the kind of company who would happily put a spycamera in everyone's home
  So THAT's what the PlayStation Eye is for!
  
  --
  Nostalgia isn't what it used to be.
2. Re:Was it really worth it, Sony? by rotide · 2011-05-25 02:59 · Score: 4, Insightful
  
  I wouldn't call it retaliation, per se. I'd more be inclined to describe it as a company that everyone who likes to "penetration test" sees as a fun target now. They pissed certain people off and made a certain amount of headlines and eventually they hit "critical mass" with the "hacker community". Sony keeps fixing things and the "testers" are having a good time showing the world that they are still vulnerable.
  Sony is being forced to play a game where the other side has the better toolset.
3. Re:Was it really worth it, Sony? by TheGratefulNet · 2011-05-25 03:03 · Score: 3, Interesting
  
  but you have to realize: in a war, 'precise bombing' is not always possible.
  if the hackers that are pissed off are just attacking sony any way they can, its not hard to imagine that others who 'touch' sony will also get hurt. ie, their users and customers.
  I long ago stopped buying and supporting sony things. my way to fight back is to just stop buying. but kids today who think that sony is 'evil' in the most literal sense of the word might go to any lengths to seek revenge.
  there IS a lesson here. the teenager who gets pissed off at the world and wants to seek revenge is not something you can directly fix. the way to fix the problem is stop pissing off your customers in the first place.
  sony, culturally, probably won't understand a word of this. I expect the 'war' to continue for quite a while.
  gee, just like the 'grownups' kind of wars. just like it.
  
  --
  
  --
  "It is now safe to switch off your computer."
4. Re:Was it really worth it, Sony? by _Sprocket_ · 2011-05-25 03:06 · Score: 3, Informative
  
  ...admitting guilt to something that, before the DMCA, wouldn't even be considered a crime...
  There are indeed many things in life that were not illegal until they were.
  That is actually a fundamental concept in law - whether one has inherent rights and law adds restrictions or whether one's rights are expressly granted by law.
5. Re:Was it really worth it, Sony? by DurendalMac · 2011-05-25 03:20 · Score: 5, Insightful
  
  Yeah, but it's just getting excessive now. When Moe pokes Curly in the eyes, it's funny. When Moe beats Curly to death with a lug wrench and then dismembers him with a chainsaw, then...well, actually, it's still funny.
  
  Carry on.
6. Re:Was it really worth it, Sony? by cpu6502 · 2011-05-25 03:47 · Score: 5, Informative
  
  >>>>>If someone could resurrect the innovative Sony of the mid-to-late '70s
  >>
  >>Sony has always just been the 'reliable brandname' on equipment from a company big and powerful enough to roll in the innovations that other entities have pioneered in.
  I believe you're mistaken.
  Sony is the company that invented videocassettes (Umatic and Betamax). Sony is the company that invented Betacam. The 3.5 inch floppy. The Compact Disc. Rewritable magneto-optical discs. THAT'S the company the grandparent poster was talking about when he said "innovative".
  
  --
  My AC stalker: " I personally agree with your posts most of the time, but that won't keep me from modding you troll"
7. Re:Was it really worth it, Sony? by h4rr4r · 2011-05-25 03:53 · Score: 3, Insightful
  
  So instead of fixing their security issue they decided to steal value from consumers. What a wonderful company.
Karma by what2123 · 2011-05-25 02:47 · Score: 3, Insightful

It's not sad to see this happening considering their reputation for the past 10 years. You cannot continually screw your revenue sources and expect to remain on top of the pyramid. Eventually it will all fallout from underneath you, one way or another.
There will be no peace. by Anonymous Coward · 2011-05-25 02:48 · Score: 5, Insightful

Period.
Security? by muffen · 2011-05-25 02:52 · Score: 5, Interesting

After it was discovered that Sony was installing rootkits on people's machines, Mr Thomas Hesse, president of Sony BMG's global digital business said, "Most people I think don't even know what a rootkit is, so why should they care about it?"

They are just taking the same approach to Security, since they don't know what it is, why care about it?
Plain text passwords.... by antifoidulus · 2011-05-25 02:55 · Score: 3, Insightful

From TFA:

"E-mail, password, and names of thousands of users were exposed via text file"

Why...why...WHY do people still insist on plain text passwords? Have these people ever heard of a hash? There is 0 reason ever to store a plaintext password, end of story. Anyone who designs a system that stores passwords in plain text should be fired on the spot.

--
Monstar L
Pull the damn cables already! by AAWood · 2011-05-25 02:57 · Score: 3, Insightful

Seriously, how long until Sony head office just tells every department to yank their network cables until a full security audit is done? This is just embarrassing at this point.
1. Re:Pull the damn cables already! by lennier1 · 2011-05-25 03:02 · Score: 3, Insightful
  
  I get the impression they're not even trying anymore.
2. Re:Pull the damn cables already! by Captain+Spam · 2011-05-25 04:05 · Score: 3, Insightful
  
  Seriously, how long until Sony head office just tells every department to yank their network cables until a full security audit is done? This is just embarrassing at this point.
  What costs more, cutting off all online sales and hiring an audit team for X amount of time, or closing your eyes and ears reeeeeeeeeeally tight until everyone forgets about this in a couple months?
  Er... hang on, let me clarify: What costs more in the short term, within the attention span of the CEO/CIO a modern multi-bazillion dollar megaconglomerate? Remember to factor in that "admitting we made a mistake" is a near-infinite cost in this case! If you never admit it, it never happened!
  
  --
  Demanding constant attention will only lead to attention.
Pinkertons by Gotung · 2011-05-25 02:59 · Score: 5, Interesting

I wonder if this rise in internet vigilante-ism is going to birth a corporate funded internet version of the Pinkertons. I.E. a group of black hat hackers paid by big corporations to hunt down and ruin groups like Anonymous through less than legal means.
1. Re:Pinkertons by rsborg · 2011-05-25 07:27 · Score: 3, Insightful
  
  I wonder if this rise in internet vigilante-ism is going to birth a corporate funded internet version of the Pinkertons. I.E. a group of black hat hackers paid by big corporations to hunt down and ruin groups like Anonymous through less than legal means.
  I wouldn't put it past the entrenched powers to use whatever means necessary to get this done (ie, either digital brown-shirts, or burning down the commons through excessive and unconstitutional legislation that's been "purchased"). I'm guessing it'll be a combination of both, but in the short term, expect more of the "internet death sentence" type of reaction.
  I do posit this is going to get much worse. Every day, it feels like the seemingly paranoid rants by RMS seem more like the prophetic prognostications of a Cassandra who's seen the future hoping to help us avoid it.
  
  --
  Make sure everyone's vote counts: Verified Voting
Almost feel bad for them by 19thNervousBreakdown · 2011-05-25 03:01 · Score: 4, Insightful

Feel bad for them? The fuck? "They" are a corporation, whose only reason for existence is to make money. Sure, there might be individuals working there with morals, but the company itself has none at all--regardless of what US law says, it's not a person.
This corporation has spied on, sued, made vulnerable to other attacks, and bullied its customers, potential customers, competitors, and little bald children with cancer who were lying in a bed that Sony had to put its muddy boot up on to tie its laces. And, probably because it thought it could get away with overworking or undertraining its net admins, it cut corners when it came to security. The security of its customers' credit card info. Who, after all the bullshit Sony pulled, still paid for their shit, and put their credit at risk, unlike those who "stole" from Sony, who won't have what they bought taken away at the first whim, who aren't badgered every time they want to watch a movie on a different device, who don't have to sit through unskippable guilt-trips and FBI warnings, and don't have to pay again when the disc gets scratched.
Almost feel bad for them? Ha! I'm not even close to feeling bad for them. There is no possible amount of "suffering" that could make me feel bad for them. Call me when Sony wakes up one morning with a pain in its left arm and is forced to face its own mortality.

--
<xml><I><am><so><damn>Web 2.0</damn></so></am></I></xml>
Re:Again? by somersault · 2011-05-25 03:03 · Score: 3, Insightful

More likely a lot of separate individuals/groups who want to join in on the Sony bashing trend.

--
which is totally what she said
Re:does this expression require children be involv by outsider007 · 2011-05-25 03:08 · Score: 5, Funny

Agree. Sony has screwed more kids than the catholic church.

--
If you mod me down the terrorists will have won
Re:Again? by Allicorn · 2011-05-25 03:22 · Score: 3, Insightful

Why extract the database of users' information if your goal is only to give a slap in the face to the evil corporation?
It's almost as if the goal of this criminal activity wasn't heroic anti-corporatist hactivism at all...

--
OMG!!! Ponies!!!