May 4, 2011

When It Rains, It Pours


Boy oh boy.…I guess it will get worse before it gets bet­ter. Where to start? Well every­one knows about the hack and loss of data. Time for the legal stuff.  About a week ago a law firm filed a class action law­suit on Sony… that was only the begin­ning. Today a Toron­to law firm  McPhad­den Samac Tuovi LLP, filed against Sony Japan, Sony USA, Sony Cana­da, and “oth­er Sony enti­ties”, say­ing  Sony must pay their client for the “costs of cred­it mon­i­tor­ing ser­vices and fraud insur­ance cov­er­age for two years”. Oh and here’s the kick­er they are suing for the low, low price of one bil­lion dol­lars. Sounds like the kind of num­ber a com­ic book vil­lian would ask for ran­som of a city. If two law­suits weren’t enough, Sony had to answer to the U.S. House of Rep­re­sen­ta­tives. Sony’s CEO, Kazuo Hirai, sub­mit­ted six pages worth of answers to the House of Rep­re­sen­ta­tives. Here is a lit­tle of what was in the let­ter:
‑Sony has been the vic­tim of a very care­ful­ly planned, pro­fes­sion­al, high­ly sophis­ti­cat­ed crim­i­nal cyber attack.
‑They dis­cov­ered that the intrud­ers had plant­ed a file on one of our Sony Online Enter­tain­ment servers named “Anony­mous” with the words “We are Legion.”
‑By April 25, foren­sic teams were able to con­firm the scope of the per­son­al data they believed had been tak­en, and could not rule out whether cred­it card infor­ma­tion had been accessed. On April 26, they noti­fied cus­tomers of those facts.
‑As of today, the major cred­it card com­pa­nies have not report­ed any fraud­u­lent trans­ac­tions that they believe are the direct result of this cyber attack.
‑Pro­tect­ing indi­vid­u­als’ per­son­al data is the high­est pri­or­i­ty and ensur­ing that the Inter­net can be made secure for com­merce is also essen­tial. World­wide, coun­tries and busi­ness­es will have to come togeth­er to ensure the safe­ty of com­merce over the Inter­net and find ways to com­bat cyber crime and cyber ter­ror­ism.
‑Sony is tak­ing a num­ber of steps to pre­vent future breach­es, includ­ing enhanced lev­els of data pro­tec­tion and encryp­tion; enhanced abil­i­ty to detect soft­ware intru­sions, unau­tho­rized access and unusu­al activ­i­ty pat­terns; addi­tion­al fire­walls; estab­lish­ment of a new data cen­ter in an undis­closed loca­tion with increased secu­ri­ty; and the nam­ing of a new Chief Infor­ma­tion Secu­ri­ty Offi­cer.
Most of this was already stat­ed in Sony’s press con­fer­ence ear­li­er this week. Sony is get­ting put through the ringer for its fail­ure to keep their data secure. Who knows what else is to come. Prob­a­bly more law­suits and legal action. With this snow­balling like it is, I can’t wait to tune into Sony’s con­fer­ence at E3. Can we say give­aways?

8 comments

  1. red_hood - May 4, 2011 11:29 pm

    This is real­ly hurt­ing sony..i work in a store that buys and sells games sys­tems and games and we’ve had a big surge in peo­ple trad­ing in their ps3’s just because the psn is down and they just dont trust sony any­more

    Reply
  2. gamecultist - May 5, 2011 11:29 am

    Peo­ple are stu­pid, los­ing trust so quick­ly in Sony.
    Either way, loads and loads of these law­suits will pop up now. If they hold any mer­it Sony will be pay­ing through the nose, hurt­ing the entire gam­ing indus­try…

    Reply
  3. AceOfNades69 - May 5, 2011 3:39 pm

    UPDATE:
    Sony heads have hint­ed that the hack­er group Anony­mous was respon­si­ble for the attack, but anony­mous con­tin­ues to deny this giv­ing a few points :
    ‑Anony­mous has nev­er been known to engage in cred­it card theft
    ‑Many of the peo­ple Anony­mous has worked against in the past has been known to have lied to the pub­lic about them. “There is no cor­po­ra­tion in exis­tence that will choose the truth when lies are more con­veni­nent.”
    ‑Anony­mous allows reporters in to their oper­at­ing chan­nels to see their work.
    ‑Who­ev­er did per­form the cred­it card theft on the PSN did so con­trary to Anony­mous’ beliefs and inten­tions.

    Reply
  4. CharcoalCoyote - May 5, 2011 3:51 pm

    Anony­mous isn’t real­ly a “hack­er group” per se. It’s more of a ran­dom con­glom­er­a­tion of indi­vid­u­als on the inter­net. Ran­dom is the key word. One sec­ond they’re right­eous­ly aveng­ing an abused ani­mal, the next they’re stalk­ing some 13 year old online. While no doubt who­ev­er hacked the PSN has had some inter­ac­tion with Anony­mous (hence the “We are Legion” quote), it is very dif­fi­cult to mark who is and who isn’t a “mem­ber”. There is no true “leader”, with sup­port going to who­ev­er has the most per­sua­sive argu­ment. Attack­ing Anony­mous is like attack­ing “fans” of some­thing: It’s very hard to prove who is and isn’t a “fan”, and loy­al­ty is prac­ti­cal­ly noth­ing, waver­ing when con­ve­nient.

    Reply
  5. thsoundman - May 5, 2011 5:43 pm

    This right here is the main case for ded­i­cat­ed servers. You can’t take down every ded­i­cat­ed serv­er on the plan­et… you might be able to take down a cou­ple hun­dred if you have a larged ded­i­cat­ed effort but when you are deal­ing with a sin­gle loca­tion such as sony it becomes far eas­i­er to do this. The biggest prob­lem i have with the P2P mul­ti­play­er host­ed by sony in microsoft is just this. There is no con­trol.
    If they encour­aged ded­i­cat­ed servers for their games this would nev­er of hap­pened and peo­ple would nev­er have had their cred­it cards stolen… at least not on this fash­ion and sony would­n’t have had their entire mul­ti­play­er net­work down for damn near a month or longer if this con­tin­ues.
    Sony is now going to pay for this set of think­ing. If they walk out of this with pay­ing any­thing less then 100million in fines I would be suprised.

    Reply
  6. CharcoalCoyote - May 5, 2011 7:51 pm

    There’s anoth­er argu­ment for Ded­i­cat­ed Servers. My biggest is the sense of com­mu­ni­ty. It’s one thing to meet some ran­dom peo­ple in Halo 3 match­mak­ing and par­ty up for a few games. It’s a total­ly dif­fer­ent thing to go back to the same Halo PC serv­er for weeks, until you know every reg­u­lar there by name (real name) and feel like a fam­i­ly. “Fair Match­mak­ing” is for peo­ple obsessed with num­bers and lev­el­ing.

    Reply
  7. ScrotusKilmystr - May 6, 2011 8:56 am

    P2P or ded­i­cat­ed aside it’s all about secu­ri­ty Sony did­n’t have suf­fi­cient secu­ri­ty pro­to­cols in place and now they are going to pay in one form on anoth­er at the bare min­i­mum lost prof­its for down time
    and to reply to gamecultists post when you enter your per­son­al infor­ma­tion online you are trust­ing that site to pro­tect your intrests if they fail as Sony has then they have bro­ken that promise that your data will be safe!!
    Iden­ti­ty theft is so sim­ple to do any­more and so hard to fix ” I had a issue with indent theft about 2 years ago” I sur­vived but I am very cau­tious when it comes to putting cc#‘s online
    If XBL was ever hit like that I would most­ly like­ly do the same.… This makes a good argu­ment for using point cards and sub cards instead of dump­ing your cc on XBL PSN 123 QRD LMNOP!!

    Reply
  8. CharcoalCoyote - May 6, 2011 9:23 am

    I always buy cards, main­ly because I don’t have a cred­it card. That’s not the kind of info I’d want to just straight GIVE to any­one.

    Reply

Have your say

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Archives - Powered by WordPress - A theme by cssigniter.com