Sony gets their arises handed

jav6454 · Jun 2, 2011

Just wow.

clicky

This is why I never buy anything Sony. They could care less for their user base.

Rodimus Prime · Jun 2, 2011

a better link that does not go to the mobile site
http://gizmodo.com/5807996/hackers-spill-over-1000000-sony-online-accounts

*LTD* · Jun 2, 2011

Wirelessly posted (Mozilla/5.0 (iPad; U; CPU OS 4_3_3 like Mac OS X; en) AppleWebKit/533.17.9 (KHTML, like Gecko) Version/5.0.2 Mobile/8J2 Safari/6533.18.5)

Good God. Plain text. No encryption.

quagmire · Jun 2, 2011

Why did this this security group release the personal information to where now scumbags can gain access to them?

jav6454 · Jun 2, 2011

quagmire said:
Why did this this security group release the personal information to where now scumbags can gain access to them?

If you read the article you'd know. Giggity...

quagmire · Jun 2, 2011

jav6454 said:
If you read the article you'd know. Giggity...

I did read the article. Fine they want to show Sony sucks at security. But, why release the information they obtained out in the wild?

How would you feel if someone was able to steal your identity which you made it easy to and released your info to the public which the scumbags ruined your credit, etc just to prove that you should take more steps to protect yourself? He didn't do it to ruin your credit and everything because he is a good person, but he had to release your personal information to prove a point.

maflynn · Jun 3, 2011

quagmire said:
Why did this this security group release the personal information to where now scumbags can gain access to them?

jav6454 said:
If you read the article you'd know. Giggity...

quagmire said:
I did read the article. Fine they want to show Sony sucks at security. But, why release the information they obtained out in the wild?

The response was to teach Sony a lesson, how will allowing innocent consumers dealing with identity theft and fraudulent charges going to teach sony a lesson? Its a ridiculous response, they could have taught Sony the same lesson with out hurting other people.

yg17 · Jun 3, 2011

quagmire said:
I did read the article. Fine they want to show Sony sucks at security. But, why release the information they obtained out in the wild?

How would you feel if someone was able to steal your identity which you made it easy to and released your info to the public which the scumbags ruined your credit, etc just to prove that you should take more steps to protect yourself? He didn't do it to ruin your credit and everything because he is a good person, but he had to release your personal information to prove a point.

Probably because no one would believe them if they didn't release it.

jav6454 · Jun 3, 2011

quagmire said:
I did read the article. Fine they want to show Sony sucks at security. But, why release the information they obtained out in the wild?

How would you feel if someone was able to steal your identity which you made it easy to and released your info to the public which the scumbags ruined your credit, etc just to prove that you should take more steps to protect yourself? He didn't do it to ruin your credit and everything because he is a good person, but he had to release your personal information to prove a point.

True I may feel compelled to be angry at the hackers, but nonetheless, I'd be even angrier at Sony for such poor security. They kept the info in plain text.... this speaks volumes on how well they cared for their customer information.

maflynn · Jun 3, 2011

jav6454 said:
True I may feel compelled to be angry at the hackers, but nonetheless, I'd be even angrier at Sony for such poor security. They kept the info in plain text.... this speaks volumes on how well they cared for their customer information.

And its not like they had not incurred any security breaches in the past. That's the galling aspect to this problem. I mean PSN was down for weeks because of hacking. Did not one manager ever consider keeping the personal info unencrypted a bad idea?

yg17 · Jun 3, 2011

jav6454 said:
True I may feel compelled to be angry at the hackers, but nonetheless, I'd be even angrier at Sony for such poor security. They kept the info in plain text.... this speaks volumes on how well they cared for their customer information.

It's unfortunately not just Sony that stores passwords in plain text. I'm a Sirius Radio subscriber and called a couple years ago to change something on my account. After the guy on the other end was done helping me, he said "Just a reminder, you can access your account online. Your username is ____ and your password is ____."

I was completely dumbfounded. Not only does Sirius store them in plain text, they make it available to their outsourced call center reps in Bum**** Egypt. Who knows what else they can see, my credit card info? Needless to say, I quickly went online and changed my password to one I don't use anywhere else.

And then there are other various websites from major companies where when you go through the "Forgot password" process, it will show you your current password rather than letting you reset it. I can't believe in this day and age, companies aren't using some sort of one way hash. Even MD5, with all of it's flaws, would be a huge improvement.

Search

Search

Sony gets their arises handed

jav6454

macrumors Core

Rodimus Prime

macrumors G4

LTD

macrumors G4

quagmire

macrumors 604

jav6454

macrumors Core

quagmire

macrumors 604

maflynn

macrumors Haswell

yg17

macrumors Pentium

jav6454

macrumors Core

maflynn

macrumors Haswell

yg17

macrumors Pentium

Our Staff