1–10121–130131–140141–150151–157

Sony Bastards

From: Ken (SHIELDSIT)18 May 2011 19:26
To: ALL140 of 157
38415.140 In reply to 38415.139
Report: Sony PlayStation Network Password Reset Page Exploited, Customer Accounts Potentially Compromised

Link to story.

It keeps getting better and better! I'd sell those things!
Reply
0/0
From: Matt18 May 2011 20:02
To: Ken (SHIELDSIT) 141 of 157
38415.141 In reply to 38415.140
Holy crap, what a farce this is.

If I'm understanding how the exploit works correctly, they are (were) revealing the unique secret token sent in the email in the request reset page! :|

Do we get a 3rd game now or what?
Reply
0/0
From: Ken (SHIELDSIT)18 May 2011 20:04
To: Matt 142 of 157
38415.142 In reply to 38415.141
That's how I understood it as well. That's something that I would do, because I enjoy passing parameters in the url. But even I don't pass secrets there!
Reply
0/0
From: Matt21 May 2011 12:36
To: ALL143 of 157
38415.143
It gets better!

F-Secure is reporting that Sony's Website for Sony Thailand has been hacked and was being used as a phishing site for an Italian credit card scam. Reuters is also reporting that a Japanase Sony site was hacked and about 100,000 yen ($1,225) was stolen from accounts that were attacked.
quote:
At this point in our investigations, we have not confirmed any data leakage. We have not found any sign of a possibility that a third party has obtained members' names, address, birth dates and phone numbers.

Security experts have told Reuters that Sony's networks around the world remain vulnerable to attack.
Seriously Sony needs to shut down all online operations immediately. People are going to continue to attack them and they should focus on securing everything.
Reply
0/0
From: Ken (SHIELDSIT)21 May 2011 15:12
To: Matt 144 of 157
38415.144 In reply to 38415.143
(fail)
Reply
0/0
From: Mouse21 May 2011 16:44
To: Matt 145 of 157
38415.145 In reply to 38415.143
They need to find out who keeps hacking them. And then hire them.
Reply
0/0
From: Peter (BOUGHTONP)21 May 2011 16:49
To: Mouse 146 of 157
38415.146 In reply to 38415.145
What makes you think it's one person/group?

By revealing how incompetent they are with the original problem, they've basically just said "hey everyone, come have a go, we're really easy".
Reply
0/0
From: Mouse21 May 2011 16:56
To: Peter (BOUGHTONP) 147 of 157
38415.147 In reply to 38415.146
Find all of them. Or at least just the best ones.
Reply
0/0
From: Peter (BOUGHTONP)21 May 2011 17:02
To: Mouse 148 of 157
38415.148 In reply to 38415.147
But they don't need to.

All they need to do is hire any security firm - based on what we've seen, even a rubbish security group could hardly make it worse, (though they should probably hire one of the well known firms, at least as a PR stunt to pretend they care).

A good one will probably walk in and say "shut down external access to everything until we've run an audit, and we'll let you know when it's safe to bring things back again".
Reply
0/0
From: Mouse21 May 2011 17:06
To: Peter (BOUGHTONP) 149 of 157
38415.149 In reply to 38415.148
Aye, and it's crazy a company that size hasn't done that. Coorporations are stupid.
Reply
0/0
From: JonCooper21 May 2011 17:14
To: Mouse 150 of 157
38415.150 In reply to 38415.149
standard business bullshit innit
in my experiance, most businesses have a real problem beliving anyone can do stuff better than they do
Reply
0/0
From: Peter (BOUGHTONP)21 May 2011 17:16
To: Mouse 151 of 157
38415.151 In reply to 38415.149
Crazy in one sense; obvious in another - having experienced small-medium scale bureaucracy, it's not hard to imagine how much worse it might be at a company of that size, which easily explains how a whole bunch of incompetent staff could pass the buck and let shit like this happen.
Reply
0/0
From: Ken (SHIELDSIT) 3 Jun 2011 04:22
To: ALL152 of 157
38415.152 In reply to 38415.151
Fucking Sony has been hacked again!!! There is confusion over exactly what network it is, some say PSN some say Sony Online. But they stored over 1 million users info in plain text and it's been taken.

Unreal :O)

quote:
From http://twitter.com/#!/lulzsec (same people who recently hacked PBS)
NOTE: This seems to be about SonyPictures.com right now. They say PSN was compromised but this may be a new development they haven't leaked anything from yet.
We recently broke into SonyPictures.com and compromised over 1,000,000 users' personal information, including passwords, email addresses, home addresses, dates of birth, and all Sony opt-in data associated with their accounts. Among other things, we also compromised all admin details of Sony Pictures (including passwords) along with 75,000 "music codes" and 3.5 million "music coupons".
Since some users can't seem to read, files/databases were released. See Twitter link above.
EDITED: 3 Jun 2011 04:23 by SHIELDSIT
Reply
0/0
From: Serg (NUKKLEAR) 3 Jun 2011 06:34
To: Ken (SHIELDSIT) 153 of 157
38415.153 In reply to 38415.152
Awesome awesome awesome awesome awesome awesome awesome. AWESOME.

I'm sad for the people whose details were stolen, but INYOURFACESONY!!!
Reply
0/0
From: Matt 3 Jun 2011 19:30
To: ALL154 of 157
38415.154
The "Welcome Back Pack" is now available on the PSN Store.

You only have until July 3rd to choose your two free games.
Reply
0/0
From: Ken (SHIELDSIT) 5 Jun 2011 00:27
To: ALL155 of 157
38415.155 In reply to 38415.154
:'-D

And it just keeps coming.


quote:
A grey hat hacker known as idahc, has managed to compromise Sony Europe’s Database of Application Store.


Story

Sony needs to just unplug for a little bit and get their shit in order.
EDITED: 5 Jun 2011 00:27 by SHIELDSIT
Reply
0/0
From: koswix 5 Jun 2011 00:33
To: Ken (SHIELDSIT) 156 of 157
38415.156 In reply to 38415.155

:'D

 

I really don't see this stopping until there's nothing left to hack .

Reply
0/0
From: Ken (SHIELDSIT) 5 Jun 2011 00:34
To: koswix 157 of 157
38415.157 In reply to 38415.156
Agreed. They'd be better off just clicking the power button on their modem for now.
Reply
0/0