Sony's Plan To Tighten Security and Fight Hacktivism

mask.of.sanity writes "Sony Entertainment Network is rebuilding its information security posture to defend against hacktivism. It includes a security operations center that serves as a nerve center collating information on everything from staff phone calls, to CCTV, to PlayStation gamers. If it is successful, the counter intelligence-based system will be deployed across the entire company. 'At Sony, we are modifying our programs to deal less with state-sponsored [attacks] and more with socially-motivated hackers. It will be different,' said Chief Security Officer Brett Wahlin."

*clap* *clap*

[FrozenFood]

good for them

pity I wont buy another sony product ever again.

Re:*clap* *clap*

[Ihmhi]

You have to read between the lines here man.

They're not saying "We were attacked for being a socially irresponsible company, so we're going to do less evil shit." They're saying "We were attacked for doing evil shit, so we're going to keep doing evil shit and make it harder to successfully attack us."

Re:*clap* *clap*

[hairyfeet]

I don't know about him but I personally don't buy Sony because they have a serious "Hey, how can we REALLY buttfuck our customers HARD?" attitude. See ATRAC, Minidisc, memory stick, UMD, if given a chance they will completely ignore formats every else uses and is cheap for some proprietary throwback that is worse in every way for the consumer, no thanks.

Re:*clap* *clap*

[Nursie]

I can't even fully use the products I already have.

The new SEN, replacement for the PSN, has in its user agreementy a clause that says they can and will do anything they like with your user data, including giving it to any third party they feel like. If you have a problem with this you can't use the service.

That's me locked out of network features on the ps3 then.

Re:*clap* *clap*

[petsounds]

What personal data did you actually share with them, other than perhaps credit card information (which for many reasons, they wouldn't be sharing)? I'm not defending Sony, I'm just curious. If they want to share with 3rd parties that it took me about three years to finish Shin Megami Tensei: Nocturne, fine. If I was giving them a rich user profile, it'd be a different story.

Re:*clap* *clap*

[Nursie]

Name, address, gaming habits (every game you play, the times you play, how long for), any movies you may have downloaded from them, integrated tv services you've used...

These are just the things I know the box was sending to Sony from my protocol snooping a year or so back.

I'm not sure if the machine sends web history to Sony, or what you've been watching/listening to on the ps3 via UPnP/DLNA, but it wouldn't be beyond their capabilities.

Re:*clap* *clap*

They also say, that they will share their data with state sponsored hackers :)

Re:*clap* *clap*

Just because of how Sony handled this? Please, after this fiasco they'll be the safest company to trust your info to. Sony didn't handle the breach well, nor did it inform customers as it should have, but guess what? NO OTHER COMPANY would have done ANYTHING different. I'll bet there are many that would've tried to deny the whole thing.

I'm socially motivated to never buy anything from Sony again as well, but it has nothing to do with whatever their latest stupid shananigans are. Sony earned a permaban with their rootkit. Remember that?

Re:*clap* *clap*

[Nursie]

And the Vita uses?

Oh that's right, proprietary "vita cards" for games, proprietary "vita memory cards" for storage, and even a non-standard data cable.

Good work!

Re:*clap* *clap*

[Sneeka2]

And guess who designed Blu-ray and shoveled tons of money into the project to push it into the market to destroy to rival HD DVD format: Sony. Learn your history.

Also, comparing two very specific systems which are by definition very closed (gaming consoles) and a music player (which I guess you're going for with that Apple jibe) is hardly an objective comparison in the big picture. If that's all you know about these respective companies, fine, but please stay in your mom's basement.

Re:*clap* *clap*

Of all technologies, you choose to use DRM infested blu-ray as an example of user-friendly products?

Where to all these sock-puppets come from? Can we block them at the door? I guess some simple questions around OS and consumer gadgets should be enough to deter the worst.

Re:*clap* *clap*

I remember. I've not bought a Sony product since and never will.

Re:*clap* *clap*

I would use the term "corporate entitlement" for it. They think the world owes them money because they produce luxury products. Bioware are doing exactly the same thing when their latest title has a bunch of shortcuts and removed (unless you pay extra) content. But in their head space they are entitled to do whatever they want and you are just a source of income who is allowed no opinion or input.

Corporations have figured out the public doesn't listen to the news any more. Their own greed is too high and self control too low, so Sony can pretty much piss in your face and demand you pay for it and the public will only see a shower and pay the price.

Re:*clap* *clap*

And today on our fun game show My Favorite Random Multi-National Conglomerate Sucks Less Than Your Random Multi-National Conglomerate, we introduce our first contestant: peppepz!

Re:*clap* *clap*

[ArsenneLupin]

Corporations have figured out the public doesn't listen to the news any more. Their own greed is too high and self control too low, so Sony can pretty much piss in your face and demand you pay for it and the public will only see a shower and pay the price.

Sure, gold prices are sky hight currently, so what did you expect?

Re:*clap* *clap*

NO OTHER COMPANY would have done ANYTHING different.

Other companies don't try to fuck over their own customers at every opportunity. Nobody cares about the occasional security breach.

If Sony had any self-awareness, they might ask why they're the victim of so many "socially motivated hackers."

Re:*clap* *clap*

[Zontar+The+Mindless]

Damn, wish I had some mod points right now. :D

Re:*clap* *clap*

[Aerorae]

ah i had forgotten but yes I do. I can completely understand if that is your reasoning

Re:*clap* *clap*

[Aerorae]

Isn't that kinda how these big businesses work in general these days? Microsoft, Apple, Sony, Samsung, Motorola, Oracle, Intel, Dell, etc? I guess I'm just saying if someone has an issue with Sony they probably have an issue with the whole industry & it's practices, not /just/ Sony...

Re:*clap* *clap*

[Ihmhi]

I think once a business reaches a certain critical mass, evil is inevitable.

Are there any companies in the Fortune 500 (or even Fortune 1000) that aren't complete monsters?

Re:*clap* *clap*

[stms]

The first example you gave countered your own point. Blu-ray is a very proprietary Sony format (that wasn't standard when the PS3 was released). HD-DVD was inferior from a technical point of view but from a licensing standpoint HD-DVD was far far superior to blu-ray.

Re:*clap* *clap*

[Nerdfest]

I think the only music players that are currently closed are those made by Apple ... the rest are pretty open, or at least use standard connectors and software.

Re:*clap* *clap*

[peppepz]

And guess who designed Blu-ray [wikipedia.org] and shoveled tons of money into the project to push it into the market [wikipedia.org] to destroy to rival HD DVD format [wikipedia.org]: Sony. Learn your history.

I don't understand what I have to learn. Both HD-DVD and Blu-Ray were proprietary, patent- and DRM-laden standards. The proposers of both standards (including the ultimately evil Microsoft) threw tons on money on the respective standards. For once, the technically best format (Blu-Ray) won. What's wrong with that exactly?

Also, comparing two very specific systems which are by definition very closed (gaming consoles)

I don't undertand this either. I'm comparing the two currently available game consoles (PS3 and XBox 360). Both are very closed, but one is a lot more open than the other (the PS3), in particular, in the fact that it uses standard formats and connection methods, whereas the post I was responding to was claiming that Sony uses proprietary formats.

and a music player (which I guess you're going for with that Apple jibe)

Did you read the comment I was responding to, that talked about ATRAC and minidisc, and therefore Sony's music players? No you didn't.

please stay in your mom's basement.

And here comes the ad-hominem insult. This actually proves my point about anti-Sony hate, thank you.

Re:*clap* *clap*

[peppepz]

Who decides what standards are "proprietary" and what standards aren't? Can I implement HD-DVD without paying royalties to Toshiba? How come Blu-Ray "became a standard" after the PS3 was released?

Re:*clap* *clap*

[peppepz]

Even without mod points, you might try to actually respond to the facts that I put in my comment, instead of inciting the angry mobs against my person.

Re:*clap* *clap*

[peppepz]

That sucks. I'll only buy game consoles that distribute games on non-proprietary storage. Which one can I buy?

Re:*clap* *clap*

[SuricouRaven]

I think you have it backwards: If the company management isn't willing to do evil, the company will never reach that mass. Sooner or later the time will come when the management must choose between their principles and their duty to maximise profits - they can't have both.

Re:*clap* *clap*

[aaaaaaargh!]

God, you really have to wonder what's going on in the brains of Sony managers. If they had embraced the hacking/modding community like e.g. Lego did or at least tolerated it silently, they'd have obtained tons of free content, fan pages, free customer service, new customers and new uses for their hardware. Instead, they are constantly yelling "fuck you" at their regular customers and, quite frankly, I doubt that there are any "power" users left who would buy a Sony product.

Re:*clap* *clap*

[Forty+Two+Tenfold]

And guess who designed Blu-ray

And guess who made this technology even possible. NOT Sony. Learn your history.

Re:*clap* *clap*

[peppepz]

Where to all these sock-puppets come from? Can we block them at the door?

Dear Sony, after all the service I've done for you here on Slashdot, if when I get home I find a gift box full of PS vitas or tablets or cell phones or whatever you might consider appropriate to thank me, I wouldn't get offended.

Re:*clap* *clap*

They don't want power users. They are a small, thrifty, hard to please minority. It's not worth the money to try and cater for them.

Re:*clap* *clap*

[aaaaaaargh!]

But with every power user they also lose 5-10 ordinary customers. Or do you think my girlfriend or any of my friends will buy a Sony product after having asked me for advice?

Re:*clap* *clap*

[Sneeka2]

Both HD-DVD and Blu-Ray were proprietary, patent- and DRM-laden standards. ... For once, the technically best format (Blu-Ray) won.

I'll just let these two sentences stand next to each other. They're too good. :)

It's not that Sony beat HD DVD which undermines your argument, it's that Blu-ray is a horrible technology, mostly exactly because it's DRM-laden. The blue laser is nice, the DRM and all the crap that goes onto a typical Blu-ray disc is not. What won is simply one of the two evils. Therefore, choosing Blu-ray as an "open" technology to show how good Sony is in using open technologies is just... let's call it a bad example.

Both are very closed, but one is a lot more open than the other (the PS3)

So one sucks less than the other, that doesn't make it a great example for "open".

whereas the post I was responding to was claiming that Sony uses proprietary formats.

Because the PS3 is the only device Sony is selling?

Re:*clap* *clap*

[Peter+Simpson]

"I can't even fully use the products I already have." I have a solution for that problem: just don't buy Sony stuff. I used to like Sony. Their stuff was a bit more expensive, but it was high quality. Then I bought a Trinitron TV. Within a few months (just after the 90 day warranty expored, as a matter of fact), the power switch stopped functioning. The repair bill was over $300. Now, Sony *could* have done the right thing and said "it's just out of warranty, no problem, we'll cover it". Nope. They had to be d*cks about it. After bitching to them, I got a 50% reduction in the repair bill. And decided that the extra cost of Sony stuff was no longer worth it. So I don't buy Sony any more. Plenty of other good brands out there.

The TV still works great...aside from that power switch, it was a good buy!

Re:*clap* *clap*

[gmack]

More like "we were attacked so now we will add another layer of bureaucracy in the hopes of making us more secure."

An ops center is worthless if the individual departments aren't installing security updates.

Re:*clap* *clap*

[Gordonjcp]

You have to remember that ATRAC was the first consumer lossy compression format, way before this newfangled MP3 thing was available.

Re:*clap* *clap*

[peppepz]

Therefore, choosing Blu-ray as an "open" technology to show how good Sony is in using open technologies is just... let's call it a bad example

Let's put it this way. If you put your own stuff in a drm-free format inside a blu-ray disc authored by yourself, the PS3 will play it. There goes the openness. (At least I think so, because I don't own a blu-ray writer, and blu-ray discs are quite expensive, and much less comfortable to use than usb sticks.)

Because the PS3 is the only device Sony is selling?

Because the PS3 is the only Sony device I own and therefore I can speak of. Now that I think, I also have a Sony ebook reader, the PRS-350; if you're interested, it can read plain DRM-free PDFs, that you can load onto it by using a standard micro-USB cable, through the standard USB MSD protocol.

Re:*clap* *clap*

[flyneye]

Dunno about "safest".
When you make enemies as fast an furiously as Sony, I don't think you can buy enough monkeys to guard the bananas. I picture their security as being based on Wile. E. Coyotes Acme boulder diverting , little pink umbrella working in conjunction with a small sign that says " Oh, No!". If history and weather reporting are any indicator then Sony servers stand about the same chance as whoever hosts RIAA websites.

            It sounds like Anonymous isn't the only enemy they have in town either.There's any number of people pissed off at their playstation services, competitors, the curious, the furious, the politically misaligned and even a coupla governments having a keg party outside their firewall stickin their peckers into one port after another.

          I suppose Pink Floyd could illustrate my point;

If you should go skating on the thin ice of modern life,
Dragging behind you the silent reproach of a million tear stained eyes,
Don't be surprised, when a crack in the ice, appears uner your feet,
You slip out of your depth and out of your mind,
with your fear flowing out behind you,
As you claw,
the thin ice...

I predict Sony will be a manufacturer of electronic components in the future, nothing else.
Investors start getting disturbed when you beat the dead horse to pink mush.

Re:*clap* *clap*

[MysteriousPreacher]

I avoid Sony like the plague, due mainly to the root kit shenanigans and how I feel they as a company are contemptuous of their customers. However, what I've read of your posts is in fact fair. There's plenty of psychologically damaged people here acting blindly as cheerleaders and apologists for brands, spewing vitriol against their "enemy" brands, but your comments do not belong to the detritus spewed by this pack of psychologically damaged people.

Sony consoles and kit are generally as open/closed as anything comparable on the market.

Re:*clap* *clap*

[amiga3D]

What they're saying is that their enemy is actually their customers. Well, in Sony's mind that would be consumers, not customers.

Re:*clap* *clap*

[omglolbah]

While they might not want power users.....

The PS3 remained unhacked for quite a long time compared to all other consoles.
Then they removed the "Other OS" option and they had an influx of people who wanted to do the classic "run linux on it" routine.

Booooooom, their security is broken.

While they might not want to cater for them for direct profit, they DO want to keep them happy in their modding bubble so that they dont spend their considerable skill-set to breaking every security feature of the box. THAT is worth the money.

Re:*clap* *clap*

[macs4all]

Isn't that kinda how these big businesses work in general these days? Microsoft, Apple, Sony, Samsung, Motorola, Oracle, Intel, Dell, etc? I guess I'm just saying if someone has an issue with Sony they probably have an issue with the whole industry & it's practices, not /just/ Sony...

Apple removed DRM from iTunes music. Sony installed Rootkits.

Apple has no DRM on its OS. Sony has aggressively fought against Playstation hacking.

Apple has a Cloud service which mirrors your music to all your devices, regardless of where it came from. Sony?

Apple had a marketing slogan "Rip. Mix. Burn.". Sony created Blu-Ray as an unsuccessful defense against DeCSS.

Apple builds AirPlay into OS X and iOS. Sony creates SACD's DSD format as an (unsuccessful) attempt to stop CD copying (betcha didn't know that one!).

Apple actively and significantly contributes to the F/OSS Community. Sony, OTOH has been caught USING F/OSS code without attribution and in violation of those project's licensing (libarc) in its game, ICO, and parts of LAME (id3lib and more) in an OCX control.

Yep. no way whatsoever to tell those two companies apart by their respective actions.

Re:*clap* *clap*

[betterunixthanunix]

1. Funny how Google is not on your list (they seem to epitomize the "we will do evil things and pretend to not be evil" idea)...
2. In kindergarden we learned that other people doing something naughty is not an excuse for our own naughty behavior.

Re:*clap* *clap*

Other companies don't get caught trying to fuck over their own customers at every opportunity.

FTFY

Re:*clap* *clap*

[amiga3D]

Actually Sony has decades of ill will built up going all the way back to betamax. They have such cool and brilliant engineering counterbalanced by a marketing department that abuses it's customers. Truly I think they hate their customers and wish their was some way to get their money without having to deal with them. The only other corporation that gives me this feeling is AT&T who's motto is "IF you grovel and kiss our feet we might, just might, let you spend your money here."

Re:*clap* *clap*

[betterunixthanunix]

Apple has no DRM on its OS

https://en.wikipedia.org/wiki/IOS#Digital_rights_management

Otherwise I agree, Apple is less evil than Sony. Not that that is saying much.

Re:*clap* *clap*

[JoeMerchant]

I think you have it backwards: If the company management isn't willing to do evil, the company will never reach that mass. Sooner or later the time will come when the management must choose between their principles and their duty to maximise profits - they can't have both.

Exactly.

Re:*clap* *clap*

[macs4all]

They've stopped doing that years ago. The PS3 uses blu-ray, usb, bluetooth, has a plain user-removable sata hard drive, reads and writes data from whatever kind of media you can plug into it, will work with off-the-shelf usb and bluetooth controllers, keyboards, mice and webcams. Compare to Microsoft (hyper-expensive proprietary drives, proprietary controllers, limited media playback) or Apple (proprietary connectors, proprietary software required to sync).

Show me one proprietary connector on a modern Apple product (patented MagSafe power conn. excluded). And if you Google for five seconds, you will several third-party apps that can be used to "sync" to Apple's mobile devices.

Re:*clap* *clap*

[betterunixthanunix]

Funny how these guys keep growing without being evil:

http://www.redhat.com/

Re:*clap* *clap*

[homsar]

Let's put it this way. If you put your own stuff in a drm-free format inside a blu-ray disc authored by yourself, the PS3 will play it. There goes the openness.

But to distribute content (movies, TV, videos, etc.) on Blu-Ray you HAVE to copy-protect it. As in, you have to pay to license the Blu-Ray format, and then the terms and conditions state that you have to separately pay for the license to AACS, and use it to copy-protect the disc. Thus releasing open content on Blu-Ray is pretty impossible.

Re:*clap* *clap*

[macs4all]

I think the only music players that are currently closed are those made by Apple ... the rest are pretty open, or at least use standard connectors and software.

Just because Apple has a multifunction connector on the iPod and iPad (which is absolutely a necessity, considering the number of signals it carries), and just because they make it easy to use iTunes to sync those devices, doesn't mean there aren't alternatives. There are several third-party iPod syncing apps, and countless cables and devices that mate with Apple's "dock" connector. So many, that the dock connector is effectively a "standard" connector itself.

Re:*clap* *clap*

[betterunixthanunix]

Both are very closed, but one is a lot more open than the other (the PS3),

Except for the whole, "Sony can and will remotely disable features you paid for" feature.

Re:*clap* *clap*

[betterunixthanunix]

If you put your own stuff in a drm-free format inside a blu-ray disc authored by yourself, the PS3 will play it

...unless it is a video game...

Re:*clap* *clap*

[Ihmhi]

Funny how these guys keep growing without being evil:

http://www.redhat.com/

But what they don't tell you is the hat is red because... it's dipped in the blood of emacs users! BOOOOOoooooOOOooOoOOOO!

Re:*clap* *clap*

I think once a business reaches a certain critical mass, evil is inevitable.

Are there any companies in the Fortune 500 (or even Fortune 1000) that aren't complete monsters?

Actually, it's more narrow than than. Once a company is _public_ then the shareholders can demand profits which can only be returned though unethical or evil actions.

Google does good things right now. But I have no doubt that when the current board and management of Google retires, they'll be 1000 more evil than a 3-way merger between Monsanto, News Corporation and North Korea.

Re:*clap* *clap*

[betterunixthanunix]

No, iOS has DRM that is designed to prevent its user from running software that Apple does not approve of. You can read more than the first sentence, you know...

Re:*clap* *clap*

[AngryDeuce]

A PC?

Re:*clap* *clap*

[betterunixthanunix]

What you have failed to realize is that the "App Store Lock-In", and even the "iOS Development Licensing" are actually there to benefit USERS (by keeping Malware OUT, OUT, OUT).

As well as keeping pornography and political cartoons, software that might compete with Apple, software that might allow people to develop more software in a sandboxed environment, software that might allow people to play old SNES games, etc. OUT OUT OUT. The "this benefits users" argument is nothing more than a cover story; Apple could benefit users without forbidding jailbreaking, without bricking phones that were jailbroken, and without having a policy that forbids lampooning politicians.

Sony's Rootkit and Playstation DRM battles are there to benefit SONY.

So how is that not-locked-down gaming platform working for you? Oh yeah, malware:

https://encrypted.google.com/search?q=windows+malware&ie=utf-8&oe=utf-8&aq=t&rls=org.mozilla:en-US:official&client=firefox-a

Apple's iOS DRM serves exactly the same purpose as PS3's DRM: to thwart competition, prevent customers from controlling their computers (which includes phones and gaming systems) and to tap developers' revenue streams.

Re:*clap* *clap*

[mcgrew]

NO OTHER COMPANY would have done ANYTHING different.

What other company has knowingly and purposely installed malware on paying customers' computers? What other company has shipped a product and then removed some of its functionality after it's already been bought and paid for?

I was a victim of XCP. Don't expect ME to buy anything else from Sony, ever again. If I did to Sony's computers what Sony did to mine when my daughter innocently installed their damned trojan, I'd be in prison.

Sony doesn't deserve to live. I wish averyone who owned Sony stock would sell it, and I wish people would stop buying Sony products. Sony is evil and doesn't deserve your business.

Re:*clap* *clap*

do you realize that this line of thinking --- lumping all fortune 500 companies together ---
lets the real bad ones off the hook? if they're all bad, there's nothing to fix.

Re:*clap* *clap*

[msobkow]

I agree. It's like the robocall scandal in Canada, the ejection of the Greek Prime Minister, and the questionable elections in the Ukraine and Russia. As a professor of politics from U of R rightly pointed out at yesterday's protest against the robocalls, such attempts to usurp democracies are to be expected. If the population appears complacent enough, someone will try to seize power eventually. It's not a question of if; it's a question of when.

Large businesses are similarly statistically vulnerable to having one or more managers and projects push unethical products and corporate standings. Unless the rest of the company is perpetually vigilant for such abuses, the abuses will happen.

The real question is whether such abuses are treated as abuses and corrected, or whether a company leaps off a cliff and starts implementing such abuses as general policy and practice.

Sony does the latter. Apple does the latter in regard to patents. IBM, Oracle, and others take a dimmer view of such abuses, and seem more interested in their corporate integrity and the opinion of the general public about their company.

The difference is simple: Is the corporate motive profit at any price, or is it to be a "good citizen" and do more than just "make money?"

Re:*clap* *clap*

[icebraining]

You can have a curated App Store without preventing users from installing apps from other sources if they enable some option. The argument that it's for the benefit of the users is dumb excuse.

As an example, see the model used by plenty of GNU/Linux distros for decades now: repositories with manually verified applications while allowing manual installations for people who know what they're doing.

Re:*clap* *clap*

[icebraining]

Well, duh. Unlike Sony, Apple doesn't have a label or movie studio, therefore they have no incentive to do evil shit to protect profits related to them. Your comparison is nonsensical. You need to compare the areas where Apple does have a profit to protect.

Sony, OTOH has been caught USING F/OSS code without attribution and in violation of those project's licensing (libarc) in its game, ICO, and parts of LAME (id3lib and more) in an OCX control.

By the way, Apple has been recently "caught" using maps from the OSM project without attribution. It's not clear if it's a legal violation (their license requires it, but copyright may not apply to the data), but it's still a shitty thing to do.

By the way, I'm not an Apple hater: I appreciate their work on OSS projects. But I won't buy products from them.

Re:*clap* *clap*

[kelemvor4]

Google used to be at least thought of as not evil. It's obvious they're no different from any other corporation these days.. in fact they may even be worse than your average company. The point is that they reached this point without being evil (or more likely without the appearance of being evil).

Re:*clap* *clap*

[Nerdfest]

"Standard" as long as you pay royalties to Apple.

Re:*clap* *clap*

[Nursie]

I didn't say it sucked, I didn't make a value judgement at all.

I simply showed that the post I replied to, that said that Sony stopped using proprietary formats and connectors years ago, was wrong.

Re:*clap* *clap*

[TheGratefulNet]

sony is not losing any sleep over 'lost customers'.

want to know why? you kids don't get it - slashdot guys do, in general; but if you're not following this and feel deeply (a minority, to be sure) then you'll just keep buying sony like there never was a problem at all!

don't believe me? go to a coupon site like fatwallet or slickdeals and see if there is ANY pushback toward sony goods when they are mentioned.

sony tv, sony games, sony audio stuff - it sells well! ;( it sorrows me, greatly and I speak up often why buying sony is BAD for us all; but no one (over there in and IRL) cares!

we care but we are a percent of a percent. we don't matter in the sales scheme of things.

go to slickdeals or some site like that and SEE for yourself how much of a buying frenzy it is when sony is mentioned. people have not gotton the message and sony just keeps on keeping on. it sickens me (I boycott them and have been for over a decade now) but in real terms, no one boycotts them and sony continues to sell and sell and sell.

the word just isn't getting out; OR kids today just simply do not agree with the principle of 'voting with your dollars'.

Re:*clap* *clap*

[Garth+Smith]

bullshit, nobody cares about your ethical luxury good purchase policy, nobody except you. get over it

Maybe you friends don't ask you for advice because they're afraid you'll bite their head off? I've let all my friends know ahead of time that I'll be getting an Xbox 720 and NOT a PS4. Which means ALL of us will probably get Xbox 720s.

Re:*clap* *clap*

That's creepy and unacceptable, but to be honest, the xbl agreement might say the same thing and I wouldn't even know.

Hopefully that just means Sony Gaming can bounce data off Sony Pictures to figure out what content to pimp to you.

Re:*clap* *clap*

[Pf0tzenpfritz]

Well, duh. Unlike Sony, Apple doesn't have a label or movie studio, therefore they have no incentive to do evil shit to protect profits related to them.

No, but with iTunes Apple have found an even more effective way to monopolize content distribution.

Re:*clap* *clap*

[TheSkepticalOptimist]

LMFAO

Apple created a walled garden which locks you into using their hardware AND their distribution mechanism.

With the release of iMatch, Apple has effectively implemented an new type of DRM, one where their proprietary content can be streamed over to their proprietary devices. Apple didn't remove DRM from music, they just changed the way music and media is distributed to iUsers.

But DRM on music hasn't worked for 20 years, that is why Apple claimed to remove it. How about why can't I play iTunes Movies on my non-Apple device? Why hasn't Apple removed DRM from movies and TV shows? Apple had nothing to do with removing DRM, the industry decided music was a lost cause to protect. The movie industry has not realized this yet which is why the force Apple to enable DRM for their movie content.

Apple had a marketing slogan "Rip. Mix. Burn.", yes, music only. Blu-Ray is a MOVIE format, Apple does not allow support to burn their movie and TV show content.

"Apple has a Cloud service which mirrors your music to all your devices", yes, Apple devices only,
If Apple were heroes, they would open iTunes to support any device, so you could stream media to non-Apple products. The would also support ANY media type on their platform. No chance this is ever going to happen.

Apple also DICTATES what software can run on iOS. Any competitive service is prevented from being distributed on iDevices. If you are going to start whipping out Apple examples, don't ignore the "bad" stuff.

So, don't claim Apple is a hero and Sony is a villain. Apple has become one of the most evil companies that is quickly tightening their stranglehold to create a monopoly where they control hardware, software AND content, but the iMasses are so orgasmic over Apple they are not seeing this clearly.

It is absolutely retarded that people see Sony as evil and Apple as heroes when BOTH companies are trying to do the EXACT same thing, create a walled garden locking users into their platform. The difference is that Apple was a lot slicker (re slimey) and more successful to accomplish this vs Sony.

Sony has a right to protect their online services. This is not about them trying to create more DRM, this is about them preventing fucktards of hacking into their online services and ruining them for people that just want to play a game or rent a movie. Yeah, Sony is evil for that. Whether Sony has learned from past mistakes, it is yet to be seen, but they are learning that they cannot have a viable content system if their users loose faith in their ability to protect those online systems.

While I don't want to support walled gardens, I support any other company trying to compete with Apple, but Apple has a "lets crush them!" mentality and I am very afraid that 10 years from now you can only buy content through iTunes (controlled and set by Apple pricing schemes) and run them on iDevices (controlled and set by Apple pricing schemes).

If that is not the sign of an evil, selfish and greedy corporation, then you have your head stuck in the sand.

Re:*clap* *clap*

[bananaquackmoo]

1. Computers don't cost $2000. 2. Friends have a computer. Everyone has a computer. 3. Not all computer games have DRM. 4. You can hook a computer up to any size monitor, including a TV. 5. I for one know more people who play games on a computer than I do who use a game console.

Re:*clap* *clap*

[bananaquackmoo]

*Sorry, I meant to say MOST computers don't cost as much as $2000. You can get a perfectly good gaming computer for ~$500.

Re:*clap* *clap*

[AngryDeuce]

So for $2,000 I can choose not to play with my friends, on a small screen, with games distributed the same way you can get them on Xbox, including the drm?

You may want to browse a few computer hardware sights because everything you're bitching about is perfectly simple to do on a PC, and you don't have to spend anywhere near $2000 to build a console equivalent in terms of hardware. If you want freedom, you have to get off your ass and work for it. Sorry if that bothers you, but that's life.

Re:*clap* *clap*

[peppepz]

Show me one proprietary connector on a modern Apple product (patented MagSafe power conn. excluded).

Dock connector. New dock connector. Ipod shuffle port.

And if you Google for five seconds, you will several third-party apps that can be used to "sync" to Apple's mobile devices.

So what? There are some hackers who reverse-engineered Apple's proprietary protocol, despite Apple's opposition. Oh, and those third-party apps still require iTunes to be installed or your device to be hacked. Where was I wrong?

Re:*clap* *clap*

[aztracker1]

I really don't see google doing anything truly anti-competitive though... For the most part, any services you use with google, you have options to get your data out (IMAP/POP support in gmail) and document exports from apps... you can totally leave the google ecosystem, and/or start competing services without google interfering directly, other than competing...

Re:*clap* *clap*

[barc0001]

"What you have failed to realize is that the "App Store Lock-In", and even the "iOS Development Licensing" are actually there to benefit USERS"

Wow. Koolaid drinking taken to 11. Then again with a username like macs4all what else can be expected?

No, App Store lock-in benefits Apple as much or more than it does the users. Why just yesterday I was talking with a friend of mine about how to get our iOS devices to use a VPN connection to one of our servers, and we realized that in order to get that operational we'd have to jailbreak all the devices in question to get the OpenVPN client from Cydia. Why? Because Apple won't bless any of the existing implementations of OpenVPN, nor will they release the APIs to implement it so it can get the AppStore(TM) seal of approval, despite repeated promises that "it's coming". So in order to use our devices securely on our internal networks we have to jailbreak our devices. Nice.

This isn't an isolated incident either, there are tons of stories about app devs having their apps pulled from the App store for non-malware related reasons, a favorite of Apple's being that they don't want any app that "duplicates core functionality of the idevice"? Afraid of being shown up, are they? Or there are other stories about app developers spending months and thousands of dollars in development costs only to have apps rejected without a clear explanation of what caused the rejection, only being told to "make changes and submit it again". Or in some cases, the app developers resubmit it, get a different examiner and the exact same app now goes live in the app store. That's a broken system no matter how you look at it.

Re:*clap* *clap*

[Savantissimo]

You say that like it's a bad thing.
  (It's hard to hit a vein with vi users, anyway - or maybe I'm just going dyslexic.)

Re:*clap* *clap*

[interkin3tic]

Apple has a Cloud service which mirrors your music to all your devices, regardless of where it came from. Sony?

In their defense, they probably realize that the only people who would entrust their music with sony after that whole rootkit thing are utterly and completely uninformed as to what else is out there, so no need to add features like "being able to upload your music and play it on your devices."

Re:*clap* *clap*

[aztracker1]

I will agree with that statement in general.. I do find that Sony often develops competing media storage formats for no apparent reason other than to collect licensing fees from others, or charge more for them (Memory Stick vs. CF/SD for example). I think Sony (especially being in league with RIAA/MPAA) puts them at the top of the evil corporation list. I actually have far less issue with their hardware than their media arms. That said, I just won't buy their products at all at this point. They assert far to much vertical control over entertainment as a whole.

Re:*clap* *clap*

[hairyfeet]

Well there is that rumor that valve is gonna put out a "steam box" which will basically be a stripped down OS just running steam on COTS hardware, but hell if you are gonna do that why not just slap yourself together a dirt cheap HTPC? The AMD AM3 and AM3+ chips are really cheap, with the Athlon X3 at $70 and if you catch the sales the Thuban X6 has been selling at tiger for $109 and the boards for those are again dirt cheap with nice Asrock boards for around $40, you can pick up brand new HD4850 cards at geeks for $51 now and while not the top of the heap anymore they are still insanely powerful, finally add the HDD of your choice and Win 7 HP and tada!

Or if you'd like even easier here is a 6 core monster for $320 and I can say as i own that chip that it kicks major ass both in gaming and transcoding, just slap that HD4850 I mentioned and Win 7 along with your choice of wireless controller (X360, PS3 style, flightstick, etc) and you have a machine that will not only kick some major ass gaming but will do just about any job you can come up with, be it streaming, downloading, office work, media tank, websurfing, you name it it'll do it for many many years to come.

In the end that's why i gave up on the consoles and went full time PC, sure the consoles have some nice specs when they first come out but they are so DRMed that frankly they quickly become useless for anything but consuming approved content in approved ways. My 2.5GHz P4 that I was gaming on a decade ago is now my mom's netbox where she plays her match 3 games and shops, the 2008 era Pentium duals my nephews were gaming on I recently sold for enough I was able to upgrade them to AMD triple cores (both I was able to successfully unlock) so they'll be good for awhile and I have no doubt the most I'll have to do with this AMD 6 core is change out the GPU for another $60 card in a year or two when the 6850s are as cheap as the 4850s are now. That's the nice thing about PCs, when they are no longer powerful enough for gaming they can be re-purposed and continue to be useful. In fact my very first gamer PC, a 100MHz Pentium, is actually still running 5 days a week at a lumber mill. they bought it and my 233Mhz to run an old C&C lathe that only runs on an ISA card. You'd be surprised how long a PC will last with just a little care.

Re:*clap* *clap*

[Kalriath]

That's laughable. Oracle is widely touted as being among the most evil companies out there (crappy overpriced products, and constant acquisition of companies in order to destroy their products or litigate a competitor, read Android). And IBM frankly doesn't give a crap what the general public thinks of them, they only care what the enterprise thinks of them.

Re:*clap* *clap*

[icebraining]

As the primary support guy for multiple family members, I understand very well that problem. Doesn't mean I have to agree with their solution.

You make it easy for people to break out of that area, like say ... jailbreaking apps do ... and you end up with a bunch of morons who installed sshd and didn't change the generic default password. None of what I'm saying is theory, you can take a look at jailbreaking alone to see what happens when you give the general public the ability to make that choice for themselves. They are not qualified to make that decision and its unethical in my opinion to ignore that fact as a developer.

Personally, I think that just supports my point. Some people will want to install third-party apps, with or without your permission. By refusing to support that, Apple has led those users to use shitty jailbreaking software which puts their data at risk, when they could've added proper support for installing third-party apps (possibly even giving them reduced privileges) without opening up stupid security holes.

Their decision was the worst of both worlds. How is that ethical?

Re:*clap* *clap*

[Kalriath]

No, Blu-ray was the inferior format. Why, HD-DVD didn't even support region coding. The DRM was half-assed at best, which makes it technically superior by definition.

Re:*clap* *clap*

[Zontar+The+Mindless]

Your facts are largely *irrelevant*, as AC makes so abundantly clear. Wish I'd posted it myself.

Re:*clap* *clap*

[peppepz]

Your facts are largely *irrelevant*

Opinion.

, as AC makes so abundantly clear.

Weasel words.

Wish I'd posted it myself.

Emotion.

Facts: still missing.

Re:*clap* *clap*

[alexo]

I was a victim of XCP. Don't expect ME to buy anything else from Sony, ever again. If I did to Sony's computers what Sony did to mine when my daughter innocently installed their damned trojan, I'd be in prison.

Sony doesn't deserve to live. I wish averyone who owned Sony stock would sell it, and I wish people would stop buying Sony products. Sony is evil and doesn't deserve your business.

And yet, Sony will continue to prosper, because not one person in a thousand knows, and of those that know, not one in a thousand cares.

Re:*clap* *clap*

[KingBenny]

i"m sorry but when steam got hacked i got an email quite fast that my data might or might not be compromised and that i should check and renew passes anyway just in case, so some other companies would. Or maybe that's just why steam is the very proof that much dineiro can be made with pc gaming

wrong medication

This is treating the symptom not the problem.

Re:wrong medication

[FormOfActionBanana]

What do you propose they do... kill all the would-be attackers?

Re:wrong medication

Here's a start:

1. Bring back OtherOS
2. Stop supporting CSS, AACS, HDCP and other forms of DRM
3. Apologise for installing rookits on people's computers without their knowledge
4. Apologise for taking legal action against people who circumvented their digital restrictions

Re:wrong medication

[peppepz]

2. Stop supporting CSS, AACS, HDCP and other forms of DRM

That is, stop playing DVD, Blu-Rays, and drop the ability to connect to HDMI and DVI displays? If you don't like the above mentioned technologies, you can play unprotected media and connect the PS3 via SCART, VGA or component cables anyway.

It's not that Sony, like Google, is plotting to insert DRM into the open standard that governs the Web.

3. Apologise for installing rookits on people's computers without their knowledge

Done. Seven years ago. And by the way, did Apple and other phone manufacturers issue any apology for installing CarrierIQ, which had privacy implications several orders of magnitude greater, on millions of phones?

4. Apologise for taking legal action against people who circumvented their digital restrictions

Do Google apologise when they do just that?

Re:wrong medication

[Sneeka2]

2. Stop supporting CSS, AACS, HDCP and other forms of DRM

That is, stop playing DVD, Blu-Rays, and drop the ability to connect to HDMI and DVI displays?

That's the point, come up with a frickin' format that does not use DRM and distribute movies in said format (Sony is a mayor distributor and user of DRM'd formats).

If you don't like the above mentioned technologies, you can play unprotected media and connect the PS3 via SCART, VGA or component cables anyway.

We know you love your PS3, but why do the rest of us have to put up with crippled discs we want to play elsewhere?

It's not that Sony, like Google, is plotting to insert DRM into the open standard that governs the Web.

No, because they've already inserted their DRM everywhere that matters to them.

3. Apologise for installing rookits on people's computers without their knowledge

Done. Seven years ago. And by the way, did Apple and other phone manufacturers issue any apology for installing CarrierIQ...

Interesting that you'd pick the one company by name that was the least weasel-worded about what it did and didn't use CarrieIQ for.

Re:wrong medication

[peppepz]

Do DVDs, Blu-Rays, HDMI and DVI require digital restrictions? Last time I checked, they could all be used without it.

Yes, they require the DRM technologies (in that order) that the post I was responding to wanted Sony not to support. Some of them (DVD) allows them to be disabled. Some of them (HDMI) don't. All of them will require them in order to play back the media that you can actually buy in shops.

The supposed point of HDCP was to prevent people from getting really good quality video without using DRM (and prevent those evil pirates from pirating!!1!)

Correct. Fortunately it has been cracked.

Oh, so instead they inserted DRM into the "open" standard that governs television and multimedia playback. Besides, did I ever say I supported Google? Sorry, I don't.

But media playback is a traditionally DRM- and patent- infested territory, while the Web isn't (yet). I like the fact that you don't support Google when it's evil, let's meet on the next slashdot story about a Google evilness and then let's count how many we are there. But you'll have to post not anonymously, so you'll get the same downmods that I always get in those circumstances.

Re:wrong medication

[Sneeka2]

Great, when Hollywood will start distributing movies in any DRM-free form you'll be able to play them on the PS3. It supports a lot of DRM-free formats.

I don't care that I can play un-DRM'd content on a PS3. I don't have a PS3. But I do have to live with the restrictions of DRM'd Blu-ray discs, which gained in popularity thanks to such arguments as "well, it plays even on your game console, so what are you complaining about?" And Sony is a huge part of Hollywood. If they wanted to, they could distribute non-DRM'd content. Because Sony is a huge content distributor. And they are exactly the ones that insist on DRM.

Thanks for the ad-hominem attack. It's about the fifth one I've got today for posting a positive comment about a product of Sony.

I don't really have anything against Sony, believe me or not. But your defense, based virtually entirely on a single product, the PS3, is just too delicious.

But curiously, Sony are the only ones that get bashed here on Slashdot.

Oh, you must come back on the Apple-bash and Microsoft-hate days, it's fun then.

Re:wrong medication

[Opportunist]

That's not even treating the symptom. That's just a painkiller so you don't even feel the symptom anymore.

Re:wrong medication

[Opportunist]

I have a strange, maybe backwards, idea, but it just might work: Produce what your customer wants, but, you know, with the actual intent to give him what he wants, not just the bait-and-switch strategy of showing him what he wants, waiting 'til he buys and then yanking it from his grasp to leave him with what YOU want.

It just might make people actually, you know, WANT to buy your products. I have a hunch it might work a lot better than trying to force people to buy your crap.

Re:wrong medication

[FormOfActionBanana]

That is off topic. The topic is about Sony finally improving their security posture (a good thing).

The GP is suggesting improving their security posture is a worse idea than not pissing people off in the first place. I think that since they need to improve their security either way... it's immaterial whether or not they know how to run the rest of their business properly.

Re:wrong medication

[omglolbah]

The sad part is that the DRM doesnt matter if it is ever thrown up on a pixel-matrix...

Getting hold of the data will be possible, and as it gets harder and harder, people get MORE motivated to do it for bragging rights... the "Scene" is a nutty place ;)

Only takes one person to make a rip, and all the DRM in the world wont help... (barring 'Trusted Computing' and such..)

Re:wrong medication

[Sneeka2]

Yup, which is exactly why the over-DRM'd crap formats are all the more infuriating.

Re:wrong medication

[macs4all]

I have a strange, maybe backwards, idea, but it just might work: Produce what your customer wants, but, you know, with the actual intent to give him what he wants, not just the bait-and-switch strategy of showing him what he wants, waiting 'til he buys and then yanking it from his grasp to leave him with what YOU want.

It just might make people actually, you know, WANT to buy your products. I have a hunch it might work a lot better than trying to force people to buy your crap.

Apple's market cap and stock price stands as ample evidence that "your" idea, works...

Re:wrong medication

[betterunixthanunix]

you can play unprotected media

Only some un-restricted media; here is a large class that your PS3 will not play unless you receive Sony's seal of approval:

https://en.wikipedia.org/wiki/Video_games

It's not that Sony, like Google, is plotting to insert DRM into the open standard that governs the Web.

"Google does evil things too! Let's praise Sony!"

did Apple and other phone manufacturers issue any apology for installing CarrierIQ

Well, much as I disagree with Apple, yes they did, in roughly the same language of corporate-PR-speak that Sony used when talking about the rootkit. Neither company has changed its attitude about its customers.

Do Google apologise

Oh look, another "all the other kids are being naughty too" argument.

Re:wrong medication

[betterunixthanunix]

But media playback is a traditionally DRM- and patent- infested territory

No it is not. They used to have DRM-free satellite broadcasts, and people used to just tune in with giant C-band antennas. Then some bright folks at HBO hired some bright folks at a company now owned by Motorola to develop a DRM system for satellite TV. Video cassettes used to be DRM free also, until some bright folks at Macrovision started attacking AGC circuits in VCRs.

The tradition is for media of all kinds to start out DRM-free, then for DRM to creep in. The removal of DRM from iTunes music was a rare event. In general, corporations (including Sony) have little respect for their customers.

Re:wrong medication

[betterunixthanunix]

other people do bad and they just get a slap on the wrist. Sony does bad and it gets a death sentence

You must be new here. Take a look at the comments on any Apple or Facebook story, and you will see people attacking their policies just as much as Sony's.

As for the hackers, I suspect it was a matter of opportunity. Sony was probably easier to attack from the comfort of one's home (where most of the hackers were working) than other companies that the hackers probably wanted to target.

Re:wrong medication

[Nursie]

Err, you might want to read up on HDMI, it absolutely does not require HDCP in order to function.

You can quite happily display HD content without an encrypted connection, so long as the machine doing the displaying allows it. HDCP is a measure implemented by the computer to make sure the screen can be trusted. The screen will happily accept signals without it if the computer doesn't ask. DVI is the same.

DVD and Blu-Ray can exist in DRM-less form also.

Re:wrong medication

[Opportunist]

Damn, I knew I should have patented it.

Re:wrong medication

[Opportunist]

That's pretty much the point: Produce what people want, sell them what they want (ya know, good ol' capitalist style) and they won't be pissed at you. People who aren't pissed at you won't attack you. Quite the opposite, they will probably even go out of their way to fight for you, if only with words and flames (aka fanboys).

For reference, see Apple, Linux and all the other companies, organizations and systems that have a zealous following that would kill their firstborn if he said anything against their beloved brand.

Re:wrong medication

[FormOfActionBanana]

That's the way "popularity" works. That's not the way "security" works.

Cheaper strategy

[mcbridematt]

Don't be dicks.

Re:Cheaper strategy

[DigiShaman]

Cuts both ways. While Sony has pissed me off lately, the hackers equally so. As a casual gamer, I'm so sick and tired of all these angsty hackers posing an "up your ass with a stance" attitude. Why the hell should I have to take flak from both sides just enjoy a little gaming? I tell ya, it's simply not worth my time or my security being compromised.

Screw this, I'm gaming elsewhere.

Re:Cheaper strategy

[artor3]

That only works to a point. Hackers frequently don't share the morals of normal people. Sony could easily do something completely innocuous, only to find that they've angered a bunch of internet thugs who respond by making Sony and their customers suffer.

It's akin to staying on the mob's good side so that they don't torch your shop. It might be cheaper and easier in the short term, but it's not a sustainable strategy. In the long run, you need to be able to defend yourself.

Re:Cheaper strategy

[sjames]

He who lies down with dogs gets up with fleas.

You might want to check the species of your bedfellow.

It's not like Sony's sins are minor. They include bait and switch and mass hacking on a scale Anon. can't even aspire to. Because they have money, they have gone un-punished.

So, yeah, gaming elsewhere is probably a good idea.

Re:Cheaper strategy

[sjames]

Evidence suggests that being at least neutral greatly reduces your chances of being attacked. Sure, they MIGHT get attacked anyway, but they PROBABLY wouldn't be. The attacks have for the most part been well aimed so far.

Re:Cheaper strategy

[Moleculo]

If that actually was cheaper, they'd probably be doing it already. Why do you think they became dicks in the first place, for the fun of it?

Re:Cheaper strategy

[artor3]

Evidence also suggests that the internet never, ever, ever forgives. Sony is evil in the minds of internet-people, and no amount of "being neutral" will change that any time soon. Are they just supposed to suffer all the beatdowns they get over the next ten years until people start to say, "Hey, that rootkit thing was a long time ago..."?

Re:Cheaper strategy

[MagusSlurpy]

Sony is evil in the minds of internet-people, and no amount of "being neutral" will change that any time soon.

No, but a large amount of "being good" would change that. Bringing back OtherOS, donating $25 million to the Mozilla Foundation, or opening a no-kill shelter for kittens would probably take a lot of heat off of them. Even though Google seems to have gotten away with it, "Don't be evil" is a pretty good rule to live by to keep armies of nerds off your ass.

Re:Cheaper strategy

[AdamJS]

Well, it doesn't help that after some form of openness (ie otherOS, standardized inputs on the PS3), they immediately clamp shut (proprietary memory designed only for maximizing profit and for screwing gamers over) and that they always follow said process.

Re:Cheaper strategy

[AdamJS]

Because Corporations generally dislike consumers, and Sony is at the top of the pile of disdain.
Oh, they love the consumers' wallets, of course.

Re:Cheaper strategy

[Opportunist]

No, but their hacks are much easier to hush up. Because you and them, you BOTH want nobody to know about it.

Re:Cheaper strategy

[jandrese]

So if I play games I'm getting in bed with Sony. If I don't play games I get into bed with hackers. It seems there is no way to win this game.

Re:Cheaper strategy

[sjames]

Not playing games is not getting into bed with anyone.

Re:Cheaper strategy

[sjames]

They DID earn the beatdowns. They probable doubled the hate by refusing to make a real apology even after it was perfectly clear they crossed the line. Playing the corporate get out of jail free card while kids get put under the jail for hacking on even a tiny fraction of the scale Sony did cemented it into place.

They earned the hate through some fairly large scale evils, it would take an equally large act of contrition to make the hate go away.

Wrong use of word?

Hacktivism is to protest political ends. I belive the term is misused here...

Re:Wrong use of word?

[Black+Parrot]

Hacktivism is to protest political ends. I belive the term is misused here...

Right. Unless all those credit card numbers were stolen to support the Club A Baby Seal for Supply-Side Jesus movement, it was just theft, not hactivism.

Re:Wrong use of word?

[jandrese]

Would ending the practice of locking down material with DRM be considered a political position? I could see that going both ways. This gets muddled even more when you consider entities like the Swedish Pirate Party.

Wrong way of thinking

[gzipped_tar]

As part of the society, you should think about how not to become a target of hacking activism. Especially when it's impossible to crush every one of the "hackers".

Better yet, convert them into your loyal customers, and even better, direct their anger to your competitors.

Re:Wrong way of thinking

[Sir_Sri]

That seems utterly impractical. The barrier to entry for attempting to hack is sufficiently low that any big company will offend people eventually, no matter what it does. Made a game I don't like, use boxes that are too large for shipping? Price a product some jackass feels entitled to at a point more than they can afford. Etc. etc. etc.

Sure, sony has earned a lot of their current hate. But every company has to realize that they will offend someone eventually, if nothing else than the thrill of trying to hack a big company.

From http://money.cnn.com/magazines/fortune/fortune500/2011/index.html
The largets US Companies in 2011
Wal-Mart Stores
Exxon Mobil
Chevron
ConocoPhillips
Fannie Mae
General Electric
Berkshire Hathaway
General Motors
Bank of America
Ford Motor

I challenge you to find anyone on that list that hasn't pissed off a lot of people, intentionally or otherwise, and legitimately or otherwise, but there are still a lot of angry people at them. And you can keep going down the list.

Sony isn't any different, and even if they change their ways, people will still believe them evil a decade from now. But I don't think you do 100 billion dollars a year in business and not make enough people angry to cause all sorts of hacking problems. Even Warren Buffet has made enemies because he thinks he makes too much money and should be taxed more.

Re:Wrong way of thinking

I'll grant you that just based on statistics and human nature, any company with a sufficiently-large customer base will invariably really piss off some minority sub-group of their customers. However, there's a difference between pissing off minor subgroups on some matter of debate (e.g. "Wal-mart sells eyeliner that was tested on rabbits! Let's protest these animal-haters!"), and taking flatly evil, anti-consumer actions that affect the entire customer-base in a negative way (e.g. several notable Sony debacles from the past).

It's like the difference between BofA hiking a subset of their customers' credit card interest rates to pad their profits (with due notice, according to the rules), and BofA deciding "Hey, traditional bank fees aren't really working out for us, so we've decided to just start stealing a flat 1.5% of everyone's checking balance every month". They're categorically different, and so is the response from the customer base.

Companies who avoid the really huge, categorically evil, moves tend not to get swamped in hacktivist attacks all the time. I work directly on internet-facing services (including in a security capacity) at a Fortune 1K company that's heavily involved in the tech/consumer world, and we've never had a hacktivist attack to date. We might someday, and we have some plans for that sort of event because it's irresponsible not to. But really our primary defense against this is that when *I* go into a meeting with a product development group, and I hear them suggest something really stupid that would likely cause a public Internet-based backlash, I flat-out tell them it's a stupid and irresponsible thing to do, and they back down.

Sony is getting exactly what they deserve, and it's deplorable that rather than try to turn their *actions* around, they've accepted that they're always going to act evil and modified their security policies to suit a constant condition of "We have a giant target painted on our backs".

Re:Wrong way of thinking

[sjames]

So how many times has Anon attacked GE?

Re:Wrong way of thinking

[Hentes]

So you want your personal data to be at the mercy of a bunch of self-righteous hackers? While it's not a substitute for a more consumer-friendly policy, securing their systems is something they should have done long ago.

Re:Wrong way of thinking

[Pieroxy]

So how many times has Anon attacked GE?

I'd argue that there is very little data on GE's website for Anon to brag about... And the fact that GE is in a business where you seldom make enemies. I mean, if your lightbulb burns out a little too soon, you don't get all mad at GE. They sell 'dead' products. And most of them are there in a heavily regulated / saturated / mature market. Hard to distinguish them from the competition.

All that makes it a company that is less 'hatable' than SONY that screws with their customers on a weekly basis.

Re:Wrong way of thinking

[Opportunist]

I guess you underestimate the areas GE has spread into. There's GE Healthcare, GE Transportation, GE Aviation, GE Money Bank, GE Energy, GE Water, GE Real Estate, GE Insurance Solutions... I'd actually be surprised if they really produce anything anymore...

If any corporation has the potential to piss off a lot of people, it's probably GE. There aren't too many cookie jars they don't have a finger in.

Re:Wrong way of thinking

[TapeCutter]

I'd actually be surprised if they really produce anything anymore

GE used to piss a lot of people off in the 70's because they built hydro-electric dams and nuclear reactors, they were hated as much as Monstanto and the oil companies, They still build hydro-electric dams and nuclear reactors, and everything else from wind turbines to kitchen kettles, I have no idea why they fell off people's shit list?

Re:Wrong way of thinking

[Sir_Sri]

maybe they've invested enough in the right kind of security that when they get attacked we don't hear about it. And it's not just anonymous, it's anyone who wants to try.

Re:Wrong way of thinking

[Anomalyst]

That's NOT a finger.

Re:Wrong way of thinking

[jandrese]

GE Money Bank in particular seems ripe for hactivist activity.

Re:Wrong way of thinking

[sjames]

Exactly my point. Merely being a large company is NOT enough to collect the kind of hate it takes to get attacked by Anon.

Re:Wrong way of thinking

[GuB-42]

AFAIK, Google does not have problems with hacktivists. Neither does Apple.
Even Microsoft, which was almost synonymous with evil at some point fares better than Sony.

Re:Wrong way of thinking

[Sir_Sri]

No, they just have security that is set to deal with it, whereas sony was, apparently, focused on state sponsored theft.

After the horse left the barn

[SuperTechnoNerd]

About time they get it together - especially when your not the most liked kid on the block.

Can they turn on your Playstation Eye remotely?

[Animats]

All they have to do is push a download that turns on the Playstation Eye of people they don't like.

Re:Can they turn on your Playstation Eye remotely?

[DarwinSurvivor]

No idea, but knowing their past security measures, anyone else probably could.

the expense needed to enforce rules in IT...

[steve.cri]

... correlates with how stupid and high-handed these rules are. Make sane rules, and you only have to defend against a handful of criminals. On the other hand, impose some utter crap on people, and you face a whole legion of righteous adversaries. Good luck, Sony...

Hacktivism? Really?

[VinylRecords]

So shutting off PSN access for millions of gamers is now considered hacktivism? Going after Sony's game division, which has almost nothing to do with Sony's corporate division, is now hacktivism?

I know that the Slashdot crowd is extremely anti-Sony but I fail to see how denying paying consumers the ability to play games is hacktivism. Or preventing dozens of new games from getting released on the PSN store, and allowing those companies and artists to sell their titles, is hacktivism.

Re:Hacktivism? Really?

The gamers were (unfortunate) collateral damage - your point is like saying to the brits in 1940 that they shouldn't be hurting the poor unfortunate Swedes by mining the sea lanes and hurting their lucrative iron ore exports to a certain Germanic chap with a funny mustache. And I don't buy the "this bit of Sony is Evil, this bit isn't" crap - continuing the wartime analogies, it's up there with saying "The Waffen SS are fine, after all they don't have *that* much to do with the Totenkopfverbände" - the reality is that they are all part of the same verminous organisation!

Sony has persistently pursued anti-consumer DRM, outrageous hacking (look up the SonyBMG rootkit saga), backed over the top lawsuits that have made innocent people's lives miseries (read up on some of the Sony-backed RIAA lawsuits against grandmother without computers etc), and lobbied hard for onerous legislation (DMCA, SOPA etc) and agreements (ACTA, TPP etc). They are the vermin of the consumer entertainment industry.

Remember - "friends don't let friends buy Sony!"

Re:Hacktivism? Really?

[drinkypoo]

I know that the Slashdot crowd is extremely anti-Sony but I fail to see how denying paying consumers the ability to play games is hacktivism.

if you do it for a laugh it's vandalism, if you do it to raise awareness about Sony then it's hackvitism, how hard is this?

Re:Hacktivism? Really?

[downhole]

Perhaps it's part of the plan... somebody already posted about that, saying that they don't really care about any of the issues, they just want to play their video games, but they can't because PSN is down. So they move to another system, and Sony loses money and influence, which is what the hackers really want. A bit Machiavellian, I suppose.

Re:Hacktivism? Really?

[Vegemeister]

If the German citizens had the power to safely stop paying taxes to the Nazis at any time with little personal consequence, I would indeed consider attacks on German citizens to be an ethical strategy against the Nazis.

Everybody needs an Anti-Cyber-Threat-Center!

[PolygamousRanchKid+]

NATO just dropped a few billion for one! Now SONY will have one! Where's yours!?!?!

I smell Y2k sized contract money now!

I am now a Anti-Cyber-Threat-Security-Response-Operations-Analysis-Coordination-Center Specialist!

In the train:
Passenger: "What line of work are you in?"
Me: "Cyber Security!"
Passenger: "Do I need that?"
Me: "Does your wife know about the email to your girlfriend on your laptop that I am reading right now?"
Passenger: "Ok, I'll buy some."
Passenger: "But do I need to wear that tinfoil hat . . . ?"

Re:Everybody needs an Anti-Cyber-Threat-Center!

[Opportunist]

Oh yea, it's dot-com all over again! And I'm in the right line of business again, just in time, cyber security technology expert... no, wait, sounds too cheesy. Information security ... too formal. Snakeoil peddler... no, too honest...

I'll just go by the simple, humble title of IT security consultant. It should be good enough for a 300/hour rate, and that's good enough, I don't want to be greedy...

Re:Everybody needs an Anti-Cyber-Threat-Center!

[ciderbrew]

:) Hi. I'm Senior IT security consultant. My rate is 450/hour rate. If your company is worth more than the competition then you should invest more.
I used to be Mr IT security consultant. I found Senior pays better :) - * Sorry. I'd mod myself down for that one.

Re:Everybody needs an Anti-Cyber-Threat-Center!

[Opportunist]

Thanks for the tip, buddy.

Yeah, "senior" in front of your job title works wonders for your hourly rates. I've had it a few times and I still wonder why, it didn't really change what I did a lot.

Hacktivists

[drolli]

Oh i hate the term. Hackers dont hack the phone calls of the staff or hack into cctv to do harm.

Political activists use legitimate methods to increase their influence.

If you hack into phone calls for purposes different from demonstrating a problem then you are not a hacker. if you use force (like the Anonymous asshats) you are not an activist.

Now they discredit political activists and hackers at the same time by calling them hacktivists, joining two very different things. in order discredit both and connecting them to thinks none of both is related to.

Re:Hacktivists

[Black+Parrot]

Political activists use legitimate methods to increase their influence.

Yeah, like gerrymandering, suppressing voter turnout, diddling voting machines, and "losing" the ballots from precincts likely to vote the wrong way.

Re:Hacktivists

[leromarinvit]

Political activists use legitimate methods to increase their influence.

So Rosa Parks wasn't an activist when she sat on the whites-only seat on the bus? Her entire point was that what should have been legitimate wasn't. Activism isn't about increasing your influence (that's more NGO territory - lobbying for a good cause), it's about bringing public attention to your cause. Very often the most effective way of doing that is publicly defying the rules to make a point.

Re:Hacktivists

[Opportunist]

Legal is what the ruling party declares legal. Hey, I don't make the laws, I only get to twist them!

Re:Hacktivists

[Lehk228]

GP said activists not republicans and democrats

Re:

[sites4you]

Well, no matter what kind of security operation they want or rebuild they can't prevent hackers to hack their game in the future.

Before you make your next Sony purchase

read this:

https://en.wikipedia.org/wiki/Sony_BMG_copy_protection_rootkit_scandal

Sony rootkit

http://en.wikipedia.org/wiki/Sony_rootkit

Never forget, never forgive.

Re:Sony rootkit

[gtall]

Why is this insightful? It is the same mentality that makes the MidEast a battleground for 6000 years.

Who decides what methods are legitimate?

[Geof]

Political activists use legitimate methods to increase their influence.

And who, pray tell, decides what is legitimate?

Answering that question is what politics is all about. The point of engaging in politics is to determine legitimacy. Look at any political movement and you will see this struggle to define legitimacy. Legitimacy is not the starting point: it is the outcome. You are begging the question.

Which is, of course, because you are trying to propagate your definition of what is legitimate. You are not describing politics: you are engaged in it. You are not a disinterested obsever: you are a participant.

Re:Who decides what methods are legitimate?

[betterunixthanunix]

And who, pray tell, decides what is legitimate?

Those with power decide what is a legitimate form of protest; that is how they protect their power, by forcing people to play the game on their own terms. It is a classic trick, and when I did martial arts my sensei said as much: when you fight, if your opponent gets to choose how you fight, you are already disadvantaged. Thus politicians say that the proper form of protest is to get petitions signed, to stand with a sign in a free speech zone, to elect a new candidate, etc.

Sony's CSO has invented time travel!

[dstone]

TFA claims that Sony's new CSO, Brett Wahlin, "served as a counter-intelligence officer in the US Military for eight years during the Cold War." The final year of the cold war is generally agreed to be 1991, when the Soviet Union dissolved. This suggests he started working as a C-I officer no later than 1984. Yet the photo in his recent bio suggests he's in his early 40s now. So either 1) he's a prodigy and worked for the US military during high school, or 2) he can travel in time. Either way, the hacktivists might have met their match! Well played, Sony.

Re:Sony's CSO has invented time travel!

[Nerdfest]

or ... 3) Once again, Sony is lying.

Uh

[AdamJS]

Why not orient your company and your policies so as not to actively piss off people who like tinkering with their own electronics and people who don't like DRM and spyware-riddled merchandise?

Cheapskates!

[Gravis+Zero]

There are cushier jobs than leading Sony Entertainment Network’s burgeoning security shop, but Brett Wahlin was never one to shy from a challenge. So when the entertainment giant looked to revamp its security in the wake of the devastating hacking attacks against its PlayStation Network last year, the former McAfee Chief Security Officer answered the call.

McAfee, seriously? What, they couldnt shell out a few more bucks to get a guy from Norton? :)

Re:Cheapskates!

[omglolbah]

.... McAfee..... my one true enemy in the corporate environment....

McAfee who has told the company that Chrome and Firefox are dangerous security risks.... They claimed Firefox was incredibly dangerous even while the world was on IE 8 and we were stuck in IE 6 land..... Why? "Oh, McAfee ScriptScan will block all scripts that are malicious"...

Kill me... SAP was unusable with McAfee... the only way to get the damn timesheets done was to break it on purpose *sigh*

For all haters

[Forty+Two+Tenfold]

There's sonmething new from Sony you absolutely MUST have.

Re:Yeah, but are they ready for Dreamcast?

[Stormwatch]

Another reason to hate Sony: the Dreamcast's fair shot was ruined by their lies. They released absurd specs that made everyone think the PS2 was much more powerful than it actually was.

Re:uncovering flaws

[KGIII]

Well yeah, she was dressed like a slut.

Re:Uhhh Sony just one thing...

[Opportunist]

Yup. And here's where PR sets in. Instead of saying "Whoopsie, I guess we made a mistake, let's roll that back and rehire the security staff", they say "We now go forwards with a bold statement, displaying our dedication for the security of the data our valued customers entrust to us".

It's all in the delivery.

Karma'a a bitch

[Tangential]

Poor Sony. After all they've done to..er..for their customers. Karma is definitely a bitch

Anti-Social

[Doc+Ruby]

Evidently Sony learned nothing from the cause/effect relationship of their brutal approach to both security and their users. Sony set the stage by deploying rootkits and other security attacks on their own customers. Then they retroactively deleted the Linux (OtherOS) option from PS3s, many of which they'd sold to hackers for the very purpose of "hacking Sony". Though OtherOS had been crippled from the beginning, there was little effort by PS3 hackers to crack the lockout from the hardware, until Sony tried shutting all OtherOS users down. Then hacking the PS3 became necessary for every PS3 Linux user.

It was a case of "when guns (OtherOSes) are outlawed, only outlaws will have guns (OtherOSes)". Why stop at just keeping what you paid for, when you had actually paid for more than you'd originally gotten? Sony had destroyed any ethical relationship, and the community was organized.

Now, I'm not pinning all or even most of the attacks on Sony beyond keeping Linux on the small PS3 Linux community - maybe not even any of them. But that episode showed the world Sony was a legitimate target. Then after some success in keeping what they paid for resulted in arresting the hacker, Sony was now a legit target for both legitimate hacking and just plain "bash the bad guy". Combine that with Sony's copyright overreaches, its region-encoding scams, its DVD backup denials (also broken and showing Sony both greedy and vulnerable) - Sony fanned the flames of backlash.

Now Sony is just escalating the conflict. It would be a lot cheaper to give hackers back Linux, this time with some support, to give them more of a common interest with Sony. Instead Sony is further defining itself as an enemy instead of a partner. Sony's awareness of social networks seems to be purely as either enemy or marketing victim. This will not end well. In fact it will not end, and many will suffer.

Firewall

[digitalsolo]

I hear the CEO recently heard about this thing called a "firewall" and is very interested in looking into one. He also heard a rumor about "passwords" and their possibilities for increasing security. Things are a changing at Sony it seems.

Re:Uhhh Sony just one thing...

[tqk]

... didn't you make security staff cuts weeks before PSN got hacked?

Interesting that, isn't it?

i) They got seriously hacked. So, what were the security staff actually doing when they were employed?
ii) I wonder if some disgruntled ex-security staff member showed up on 4chan and spilled the beans?

The security staff (by all accounts) deserved to be sacked. Since Sony hasn't been able to tie it back to first causes (ie., disgruntled ex-security staff), instead they simply admit their security sucked and they're now falling for blowing wads of cash on security snakeoil salesmen.

I'd be looking at Sony's board of directors wondering what they're doing to earn their pay.

Sony makes more than devices, you know...

[rocket+rancher]

Sony's computer-related devices (for even very loose definitions of "computer") are only a part of their revenue stream. Sony's real money comes from producing and distributing content, so measures to protect that revenue stream are in order, even if it negatively impacts some other revenue stream. Certainly, Sony's draconian DRM has alienated some fraction (even a large fraction) of people who have purchased Sony computer-related products, but that is not that big a deal to Sony management, because they listen to their accountants, not their conscience. The bad PR over the root kit deployment was pretty much confined to that (vanishingly small) fraction of their total market demographic that even knows (or cares) what a root kit is. Business is business -- corporations who think profit has to be moral (for whatever value of moral you care to use) are going to make a lot less profit than those who aren't similarly encumbered.

State-sponsored attacks?

[psydeshow]

Why isn't anybody talking about the change in focus away from *state-sponsored attacks*? What does that even mean in this context?

Was Sony seriously focusing on preventing militaries and intelligence agencies from attacking its infrastructure? Damn, they must have seriously pissed off some powerful people with those rootkits!

And that still doesn't explain why their security was so damn shoddy. Unless... maybe their old CSO was focused on state-sponsored attacks, but a risk analysis put the likelihood of such an attack at near zero, so they slashed their security budget. That almost makes sense...

Re:uncovering flaws

[Nursie]

And if you think that's an analagous situation then you're retarded.