The issue is that GoDaddy didn't really reverse their stance, at least not where it counts. They now claim to not support the SOPA bill as written, but they still agree with it for the most part, which isn't surprising since the more or less wrote the thing.
The FCC can't pass laws or "acts" (which aren't "passed" anyway). Only Congress can pass bills which become laws when signed by the President (or via a veto override). The FCC has regulatory power over broadcast networks based on the mandates given to it by Congress, and has the power to levy fines, but it can't enact laws. There's a grey area when it comes to non-broadcast stations and cable companies, but usually they comply.
All that's well and good, but it doesn't change the fact that Deutsche Telekom doesn't want T-Mobile USA. They don't want to run it and are putting the bare minimum into it to keep it going. Since the deal fell through, that means that basically Deutsche Telekom can't sell T-Mobile USA to any of the larger companies (I doubt Sprint would get approval either since it's one of the top 3 companies).
That means that either Deutsche Telekom will try to sell T-Mobile to one of the smaller companies for less than they would have gotten or Deutsche Telekom will simply break up the assets of T-Mobile and sell them off in bits and pieces. The spectrum T-Mobile already has plus what they'll get from AT&T is pretty valuable. Actually AT&T could end up buying all of T-Mobile's assets, leaving just the company and it's customers behind. That could end up being worse for T-Mobile customers than an all out buy out.
That's one of the benefits of the way Anonymous works. Even if the prisoner gives up the names of the few members he knows about (assuming he does), the prisoner would have no idea who the vast majority of members of Anonymous are. That's the way Anonymous is designed.
I would be like trying to stop a swarm of army ants by stepping on a few of them.
Considering Netflix recently lost half their market value, I wonder how they are going to afford this? Are they only going to stream a handful of Dreamworks titles?
Pretty much all of those services haven't been updated in ages or aren't even used. For example I used to use Google Desktop, but uninstalled it about 2 years ago because it was buggy, performance hogging and slowed down my machine.
From what I've read, the worm isn't using an exploit. It's simply trying to log in using a set of common and easy to guess passwords. If you use strong passwords, then your machine won't be compromised. Though flood of RDP access requests could amount to a denial of service attach.
I'd think this could be done now. Game systems with motion controllers should be able to tell when the controller hits the wall when thrown out of frustration. I suppose the Xbox 360 is at a disadvantage though since there's nothing to throw with Kinnect, unless you throw some random nearby item and the Kinnect sees it. That or you start swearing at it and the voice recognition kicks in.
The only reason Android is the fastest selling [i]phone[/i] OS (if you count tablets iOS is still on top), is because there are more manufacturers of Android phones than iPhones. As for people switching from the iPhone 3GS to Android, from what I've read there are just as many people switching from Android to the iPhone 4. People with AT&T are switching to Android and people with Verizon are switching to the iPhone (grass is always greener I guess).
You'd think in this day and age that things like transformers and the grid could be either shielded against EM radiation or simply add things like surge protectors or circuit breakers to the grid designed to withstand solar storms (or nukes even).
It's highly unlikely this was a hack. If it was reports would be in the hundreds or thousands, not "dozens". Also there would a variety of purchases, not just for one game.
The most likely answer is a keylogger trojan, social engineering or a reused password from a true hacked site (like Sony or PBS). I find it odd that everyone who suggests that in TFA is thumbed down into oblivion as that's the most likely answer.
Also iTunes doesn't bill in real time, so those purchases that "just happened" were likely from days ago.
It's enlightening to know your card company is perhaps a bit more security conscious than mine... at risk of looking like a phisher:), could you mention who they are?
Considering I don't even know my new number yet and my card company won't give my new number out over the phone, you couldn't phish with just the company name even if you try, but to make things interesting I'll let you try to discover it on your own.:) They're pretty good at security, they even automatically blocked one of my purchases I made a few months back because they said it was unusual (it was) and wouldn't let it go through until I authorized it. They aren't the best and don't have the best reward plan, but they've always been dependable.
Pretty much any major credit card company (American Express, Capital One, Chase, etc) should do the same though. If you report a possible loss of credit card info, they should reissue a new card to you. It's actually cheaper for them to send you a new card than to try to hundreds (or thousands) of dollars of fraudulent charges
The people who are likely to get screwed are people who used Debit (Credit) cards on PSN as those aren't nearly as well protected as credit cards and the funds come directly from your bank account. The exception to that would be people who have specific "debit card" accounts with very little money in it to limit loss if the card is stolen.
The address/name/birthdate information is publicly available. Your CC# should not be publicly available and you definitely don't want your CC# and billing address linked together since that's enough to start making online purchases. If a hacker has just your name and address or just your CC# that's not usually enough to make purchases, but having both is. By getting a new card # you greatly decrease the chance of fraud.
Weren't the encryption keys stored on the PS3 itself? If so they are already accessible which is probably part of the problem. If Sony was storing the server encryption keys on the PS3, then they were screwed the moment the PS3 was hacked. They should have shut down updated the PSN network servers the moment the PS3 master key was leaked.
The CVV or CV2 codes aren't required to make purchases in all places. Yes, for most cards you aren't liable for fraudulent purchases, but the money has to come from some where so the credit card companies end up taking a hit and they raise their rates. Besides if you know your card number might have been stolen and don't report it, you might end up having to pay for fraudulent charges since at that point it's basically your fault for not telling the credit card company.
More importantly, the hackers also have your name, address and birth date. That information is nearly enough info, combined with the credit card information, to have your card canceled and another one issued to them. They could initiate a USPS change of address (since they have your name and address) to wherever they want, call your credit card company to have a new card sent out and then simply activate that card when they get it.
It's much easier to preemptively have your credit card company reissue a card now, then try and go clean up a much more complicated mess in the future. That's what I did and my credit card company said that was a smart move on my part.
I could understand a single person having his data stolen by someone hacking that persons account, but why was it possible for someone to log in and grab every single PSN users' account data? All that data should never have been stored on a system accessible the Internet.
The only thing I can think of that would explain what happened, is that Sony stored the entire customer database on the PSN networks servers and used SQL to display/edit the account of the logged in user. A simply SQL injection bug would allow accessing everyone's account info. That wouldn't be possible if Sony kept all the personal info on a separate system with only the user name and a hashed password stored in the stored database on the PSN server. My guess is that's what Sony's busy doing now, moving the account data to a server not accessible from the Internet, but that's too little too late.
On a side note, I saw no evidence of fraud on my credit card account, but I cancelled it last night any way. When I called to cancel I was told I was the 2nd person the guy on the other end talked to about the Sony breach. The other person already had fraudulent charges on his account. So if you have credit card info stored on PSN, cancel that card now as it's only a matter of time before you get hit.
The document says "so-called flying saucers" with 3 foot tall human shaped bodies wearing test pilot guard, No where does it say "aliens" in the document. They were obviously dwarf test pilots.
It is unauthorized access. Unauthorized remote root access by Sony to a PS3 that belongs to an end-user who never gave them permission to do whatever it is they needed remote root for.
I'm not sure about you, but when I upgrade the firmware on my PS3, I have to agree to a few hundred pages worth of text. I'm willing to bet that that's Sony's way of asking permission.
Slashdot Mirror
The issue is that GoDaddy didn't really reverse their stance, at least not where it counts. They now claim to not support the SOPA bill as written, but they still agree with it for the most part, which isn't surprising since the more or less wrote the thing.
I believe you still have to put the router into setup mode even when using shared PIN mode. That limits the times this attack could possibly work.
Nitpick:
The FCC can't pass laws or "acts" (which aren't "passed" anyway). Only Congress can pass bills which become laws when signed by the President (or via a veto override). The FCC has regulatory power over broadcast networks based on the mandates given to it by Congress, and has the power to levy fines, but it can't enact laws. There's a grey area when it comes to non-broadcast stations and cable companies, but usually they comply.
http://en.wikipedia.org/wiki/Federal_Communications_Commission#Regulatory_powers_and_enforcement
Welcome to Slashdot. You must be new here.
All that's well and good, but it doesn't change the fact that Deutsche Telekom doesn't want T-Mobile USA. They don't want to run it and are putting the bare minimum into it to keep it going. Since the deal fell through, that means that basically Deutsche Telekom can't sell T-Mobile USA to any of the larger companies (I doubt Sprint would get approval either since it's one of the top 3 companies).
That means that either Deutsche Telekom will try to sell T-Mobile to one of the smaller companies for less than they would have gotten or Deutsche Telekom will simply break up the assets of T-Mobile and sell them off in bits and pieces. The spectrum T-Mobile already has plus what they'll get from AT&T is pretty valuable. Actually AT&T could end up buying all of T-Mobile's assets, leaving just the company and it's customers behind. That could end up being worse for T-Mobile customers than an all out buy out.
Since when are "could" and "will" synonymous?
Considering Netflix originally moved from Flash to Silverlight, I doubt this.
That's one of the benefits of the way Anonymous works. Even if the prisoner gives up the names of the few members he knows about (assuming he does), the prisoner would have no idea who the vast majority of members of Anonymous are. That's the way Anonymous is designed.
I would be like trying to stop a swarm of army ants by stepping on a few of them.
Considering Netflix recently lost half their market value, I wonder how they are going to afford this? Are they only going to stream a handful of Dreamworks titles?
Pretty much all of those services haven't been updated in ages or aren't even used. For example I used to use Google Desktop, but uninstalled it about 2 years ago because it was buggy, performance hogging and slowed down my machine.
From what I've read, the worm isn't using an exploit. It's simply trying to log in using a set of common and easy to guess passwords. If you use strong passwords, then your machine won't be compromised. Though flood of RDP access requests could amount to a denial of service attach.
I'd think this could be done now. Game systems with motion controllers should be able to tell when the controller hits the wall when thrown out of frustration. I suppose the Xbox 360 is at a disadvantage though since there's nothing to throw with Kinnect, unless you throw some random nearby item and the Kinnect sees it. That or you start swearing at it and the voice recognition kicks in.
The only reason Android is the fastest selling [i]phone[/i] OS (if you count tablets iOS is still on top), is because there are more manufacturers of Android phones than iPhones. As for people switching from the iPhone 3GS to Android, from what I've read there are just as many people switching from Android to the iPhone 4. People with AT&T are switching to Android and people with Verizon are switching to the iPhone (grass is always greener I guess).
Then there's this:
http://www.techradar.com/news/phone-and-communications/survey-over-half-of-phone-buyers-already-want-iphone-5-984013
You'd think in this day and age that things like transformers and the grid could be either shielded against EM radiation or simply add things like surge protectors or circuit breakers to the grid designed to withstand solar storms (or nukes even).
It's highly unlikely this was a hack. If it was reports would be in the hundreds or thousands, not "dozens". Also there would a variety of purchases, not just for one game.
The most likely answer is a keylogger trojan, social engineering or a reused password from a true hacked site (like Sony or PBS). I find it odd that everyone who suggests that in TFA is thumbed down into oblivion as that's the most likely answer.
Also iTunes doesn't bill in real time, so those purchases that "just happened" were likely from days ago.
Maybe Anonymous will go back to it's roots instead of having "leaders" and "spokespeople".
Hmm, maybe I should have posted anonymously. :)
It's enlightening to know your card company is perhaps a bit more security conscious than mine ... at risk of looking like a phisher :), could you mention who they are?
Considering I don't even know my new number yet and my card company won't give my new number out over the phone, you couldn't phish with just the company name even if you try, but to make things interesting I'll let you try to discover it on your own. :) They're pretty good at security, they even automatically blocked one of my purchases I made a few months back because they said it was unusual (it was) and wouldn't let it go through until I authorized it. They aren't the best and don't have the best reward plan, but they've always been dependable.
Pretty much any major credit card company (American Express, Capital One, Chase, etc) should do the same though. If you report a possible loss of credit card info, they should reissue a new card to you. It's actually cheaper for them to send you a new card than to try to hundreds (or thousands) of dollars of fraudulent charges
The people who are likely to get screwed are people who used Debit (Credit) cards on PSN as those aren't nearly as well protected as credit cards and the funds come directly from your bank account. The exception to that would be people who have specific "debit card" accounts with very little money in it to limit loss if the card is stolen.
Supposed to doesn't always equal does.
I still can't get my credit card company to stop sending me those stupid credit card checks. When I get them they go immediately into the shredder.
The address/name/birthdate information is publicly available. Your CC# should not be publicly available and you definitely don't want your CC# and billing address linked together since that's enough to start making online purchases. If a hacker has just your name and address or just your CC# that's not usually enough to make purchases, but having both is. By getting a new card # you greatly decrease the chance of fraud.
Weren't the encryption keys stored on the PS3 itself? If so they are already accessible which is probably part of the problem. If Sony was storing the server encryption keys on the PS3, then they were screwed the moment the PS3 was hacked. They should have shut down updated the PSN network servers the moment the PS3 master key was leaked.
The CVV or CV2 codes aren't required to make purchases in all places. Yes, for most cards you aren't liable for fraudulent purchases, but the money has to come from some where so the credit card companies end up taking a hit and they raise their rates. Besides if you know your card number might have been stolen and don't report it, you might end up having to pay for fraudulent charges since at that point it's basically your fault for not telling the credit card company.
More importantly, the hackers also have your name, address and birth date. That information is nearly enough info, combined with the credit card information, to have your card canceled and another one issued to them. They could initiate a USPS change of address (since they have your name and address) to wherever they want, call your credit card company to have a new card sent out and then simply activate that card when they get it.
It's much easier to preemptively have your credit card company reissue a card now, then try and go clean up a much more complicated mess in the future. That's what I did and my credit card company said that was a smart move on my part.
I could understand a single person having his data stolen by someone hacking that persons account, but why was it possible for someone to log in and grab every single PSN users' account data? All that data should never have been stored on a system accessible the Internet.
The only thing I can think of that would explain what happened, is that Sony stored the entire customer database on the PSN networks servers and used SQL to display/edit the account of the logged in user. A simply SQL injection bug would allow accessing everyone's account info. That wouldn't be possible if Sony kept all the personal info on a separate system with only the user name and a hashed password stored in the stored database on the PSN server. My guess is that's what Sony's busy doing now, moving the account data to a server not accessible from the Internet, but that's too little too late.
On a side note, I saw no evidence of fraud on my credit card account, but I cancelled it last night any way. When I called to cancel I was told I was the 2nd person the guy on the other end talked to about the Sony breach. The other person already had fraudulent charges on his account. So if you have credit card info stored on PSN, cancel that card now as it's only a matter of time before you get hit.
I don't see anywhere where is says it's the AirPlay private key. I thought that was on a per device basis anyway.
The document says "so-called flying saucers" with 3 foot tall human shaped bodies wearing test pilot guard, No where does it say "aliens" in the document. They were obviously dwarf test pilots.
It is unauthorized access. Unauthorized remote root access by Sony to a PS3 that belongs to an end-user who never gave them permission to do whatever it is they needed remote root for.
I'm not sure about you, but when I upgrade the firmware on my PS3, I have to agree to a few hundred pages worth of text. I'm willing to bet that that's Sony's way of asking permission.