Sony Might Owe Canada $1 Billion Over PSN Attack

[Richard Allen]

It's not about fixing the issue it's about getting reparation for Sony's massive fuck up. Since when has suing been about fixing things?

I now have to go through the added hassle of closing down my cards, changing any accounts that may have used those cards, be broke for the next week while I wait for my account get fixed, run extra credit reports, pay someone to monitor it... get it? time = money, it's not about getting some pr statement about how the new psn network is totally secure this time and it will never happen again, which is all we would get if not for the suits popping up.

You're complaining about this to someone who has actually has been hit with identity theft so you're getting no sympathy from me.
It's called life, and sometimes bad things happen and you just have to deal with it.
Class action lawsuits like this are a joke only created for people who want to get an easy buck outta life.

Simply put, sony has a responsibility on both the civil and criminal realm of things (At least here in the usa but it seems other countries are stepping up) to make a resonable effort to secure our data and INFORM us when that breach has happened.

So 1)Sony stored much of our info in clear text. Well that's pretty unreasonable.
2)Sony then left us in the dark for 6 days and didn't inform people, well that's money gone from peoples wallets, banks then have to pay that back to customers, so another actually cost.
3)We find out that Sony basically put a fucking root key on every single machine it sold AND knew about the software vulnerability but still didn't fix it.

Yes we are all clearly out of line, just looking for a free buck and Sony bares no responsibility in the absolute inadequacy of protecting our data, not to mention how they painted a bulls-eye on themselves in the first place by screwing over customers.

Even assuming all you say is true, what's the injury that the class members have suffered? Expressed as both a concept and in dollars?

Well first, what I'm saying is true, I would love to see anyone argue otherwise but if you must.
credit protection services @ $20/month @ 12 months = $240 so that's a start. If you would like to include time I could say 4 hours @ an average persons pay would be another $100 on top of that. They should also be paying the banks every dollar that is stolen.
So yes there is a monetary amount that can be had (and that's why it's a class action, if they had to figure out what each person lost individually it would put undue burden on sony).

 

[Richard Allen]

I approve of this. Sony's failure to protect personal details of it's clientsand they're going to pay for it.

That is bullshit, complete bullshit, the hackers are the ones who should pay, not Sony. Trying to blame Sony for it is such a cop-out and show's how ignorant people truly are

Yes sony clearly designed the network well and was great at protecting our details.... oh that's not the case? You mean they stored much of it unencrypted? I see, well clearly they wouldn't go and do something like putting the master key for their entire network on every machine they sell... oh wait they did that too. Yes clearly we are truly ignorant, asking for basic protection of our info. So far the only thing I have seen them do was removed my features and I mean I guess that worked right? Oh no, it didn't, so now we're just left over with a bunch of screwed over people, yea we're ignorant all right.

Encrypting personal information is ridiculous. It would make the data unavailable to technical support and would prevent simple features that most users expect like password recovery. Encrypting credit card information is required to get security certification by credit card processing providers. Sony appears to have been following the same industry best practices that everyone else has been following. It is obvious that the hack was very sophisticated and somehow broke into a secure area. Even so, the sensitive information (credit cards) was still protected.

100% incorrect, there are plenty of applications and services that work exactly like this. More expensive and harder to maintain? Yea. Do I care? After looking as Sony's stock and how much money they are making...no I don't.

Edit: Have you even read the technical details of this attack, yes they may have missed it due to a ddos going on but the hack happened because they were running unpatched software that had KNOWN security flaws and they ignored it. It was not sophisticated at all, it was pebkac at Sony's sysops.

 

[damse]

Dont sue them there working hard on fixing the issue and only jsut got my ps3 dont need them charging people to make up for loss in cash

 

[JDKJ]

It's not about fixing the issue it's about getting reparation for Sony's massive fuck up. Since when has suing been about fixing things?

I now have to go through the added hassle of closing down my cards, changing any accounts that may have used those cards, be broke for the next week while I wait for my account get fixed, run extra credit reports, pay someone to monitor it... get it? time = money, it's not about getting some pr statement about how the new psn network is totally secure this time and it will never happen again, which is all we would get if not for the suits popping up.

You're complaining about this to someone who has actually has been hit with identity theft so you're getting no sympathy from me.
It's called life, and sometimes bad things happen and you just have to deal with it.
Class action lawsuits like this are a joke only created for people who want to get an easy buck outta life.

Simply put, sony has a responsibility on both the civil and criminal realm of things (At least here in the usa but it seems other countries are stepping up) to make a resonable effort to secure our data and INFORM us when that breach has happened.

So 1)Sony stored much of our info in clear text. Well that's pretty unreasonable.
2)Sony then left us in the dark for 6 days and didn't inform people, well that's money gone from peoples wallets, banks then have to pay that back to customers, so another actually cost.
3)We find out that Sony basically put a fucking root key on every single machine it sold AND knew about the software vulnerability but still didn't fix it.

Yes we are all clearly out of line, just looking for a free buck and Sony bares no responsibility in the absolute inadequacy of protecting our data, not to mention how they painted a bulls-eye on themselves in the first place by screwing over customers.

Even assuming all you say is true, what's the injury that the class members have suffered? Expressed as both a concept and in dollars?

Well first, what I'm saying is true, I would love to see anyone argue otherwise but if you must.
credit protection services @ $20/month @ 12 months = $240 so that's a start. If you would like to include time I could say 4 hours @ an average persons pay would be another $100 on top of that. They should also be paying the banks every dollar that is stolen.
So yes there is a monetary amount that can be had (and that's why it's a class action, if they had to figure out what each person lost individually it would put undue burden on sony).

You can scratch the cost of credit monitoring. Sony has already stated that they'll cover the costs associated with that. So, even by your most charitable calculations, we're left with $100 in lost wages per class member. Whoop-tee-fucking-doo.

But do the lead attorneys in a class action care about the fact that they're representing a class of plaintiffs with individual damages of no more than $100? Nope. Because that ain't where the payday for them lies. Their payday lies in the ability to stick Sony for their hyper-inflated attorney fees if they prevail. That bullshit and the damage it causes the court system by turning dockets into a backlogged cluster-fuck should perhaps concern you more than any conduct in which Sony may or may not have engaged.

And I could systematically pick my way down your list of erroneous conclusions, but let's just do the top of the list and call it a day:

Are you suggesting that the record of the high score an on-line player has achieved in a given game and which I assume is part of the subscriber's account information if they choose to store that information on Sony's server, should have been encrypted and if it wasn't that was unreasonable care of that data on the part of Sony? If not -- and I hope you aren't -- then for your point to make something other than no sense, you can't simply speak of "Sony stor[ing] much of [the information] in text [without encryption]" and conclude that doing so was "unreasonable." Obviously, all data isn't of equal sensitivity and isn't worthy of equal protection. You need to distinguish from among the universe of account data the data which, in your estimation, was worthy of encryption, establish as a matter of fact that it wasn't encrypted, and posit some justification for its encryption. If not, you're merely making the --in my opinion -- ridiculous argument that all data was worthy of encryption and that failing to encrypt all data was unreasonable.

 

[emeraldrafael]

I hate hackers for what this may do to gaming, but it seems really satisfying to potentially watch a corporation collapse.

sony's not collapsing. maybe the video game portion, but sony isnt bothered by this in the grand scheme.

OT: Yeah, i dont know where Canada gets off with this special attention stuff (like the rest of the world wasnt hit). But yeah, stop chasing sony and go find the guys that did it, because if your credit info is sold off, that 24B will never cover all that will be lost.

 

[robobengt]

Holy shit people, when is it enough? What's with the damn lawsuit?! So someone might have gotten a hold of your info, so what?!

This is a minor inconvience at best and at worst it's a minor inconvience that requires a small sum of money to fix.

$1.000.000.000?

Seriously?

So it's the entire North America that's crazy...Good to know.

 

[Dr.Faustroll]

Imagine it playing out like this: Sony loses the lawsuit, the lawfirm of course makes a shitload of money(very little of which trickles down to 'us' as the plaintiffs), and to recoup their losses Sony starts charging EVERYONE to use the network.

This lawfirm can fuck off. I'm not shooting myself in the foot to indulge in a pittance of a settlement.

 

[Eternal_Lament]

Speaking as a Canadian, I can say that I want nothing to do with this lawsuit

 

[Plurralbles]

If sony wasn't being negligent then I don't see how anyone can claim damages, especially since I haven't seena ny reports of the information used inappropriately that werent' lies.

I'd love to see someone go after facebook with their Sony strat.

 

[Lightslei]

I hate lawyers. From what I see there suing Sony claiming it's to pay for a service that Sony has already stated it would provide, hence it's just a financial blood-lust and lawyers are loving this. I swear to god, this is why the law and technology do not mix. Politicians do not understand how technology works and as a result, we get laws that either are not in the benefit of the consumer, or simply do not work in favor of technology.

 

[Asuka Soryu]

Guess there's gone to be no PS4.

I imagine who ever hacked Sony is laughing as it falls appart while the customers attack the victim.

 

[Phishfood]

Was Sony truly negligent in some way, or was it the victim of a highly sophisticated attack that any network would have been vulnerable to?

I fail to see how that would make any difference - If a bank is robbed, they have to stand up for the damage they didn't prevent, and "the robbers were really good" is no excuse. Sony fucked up, and they have to take responsibility for loosing something they were entrusted with, no matter if it was their fault.

Banks have insurance against theft. They get robbed, their insurance goes up. Instant punishment for lack of security. Does such a thing exist for being hacked? I'm guessing not. It probably should in this day and age.

 

[drunken_munki]

I hate hackers for what this may do to gaming, but it seems really satisfying to potentially watch a corporation collapse.

If they do collapse, they've had it long coming.

 

[Richard Allen]

Was Sony truly negligent in some way, or was it the victim of a highly sophisticated attack that any network would have been vulnerable to?

I fail to see how that would make any difference - If a bank is robbed, they have to stand up for the damage they didn't prevent, and "the robbers were really good" is no excuse. Sony fucked up, and they have to take responsibility for loosing something they were entrusted with, no matter if it was their fault.

Banks have insurance against theft. They get robbed, their insurance goes up. Instant punishment for lack of security. Does such a thing exist for being hacked? I'm guessing not. It probably should in this day and age.

It actually does exist, I don't know how many companies use it (I've seen more small comps who are worried about their technical skills to keep the data safe use it then larger companies) but it's out there. I know non-profits use them alot since usually they are small but collecting lots of info on people for donations and such.

 

[MrGFunk]

It's not about fixing the issue it's about getting reparation for Sony's massive fuck up. Since when has suing been about fixing things?

I now have to go through the added hassle of closing down my cards, changing any accounts that may have used those cards, be broke for the next week while I wait for my account get fixed, run extra credit reports, pay someone to monitor it... get it? time = money, it's not about getting some pr statement about how the new psn network is totally secure this time and it will never happen again, which is all we would get if not for the suits popping up.

You're complaining about this to someone who has actually has been hit with identity theft so you're getting no sympathy from me.
It's called life, and sometimes bad things happen and you just have to deal with it.
Class action lawsuits like this are a joke only created for people who want to get an easy buck outta life.

Exactly right. Unless I'm going to be contacted by these litigious fools in California how will this benefit me. I won't hold my breath for that email. It'll probably be received via a Nigerian prince.

I hope this lawsuit is ridiculed and thrown out.

 

[KiraTaureLor]

Is that billion in Canadian dollars or American ones?

Canadian dollar, but does it really matter?

I hate hackers for what this may do to gaming, but it seems really satisfying to potentially watch a corporation collapse.

But... But I likes that corporation... o_0

Seriously though, I get how Sony needs to own up on this whole disaster, but how is suing them going to fix anything. If everyone jumps on this bandwagon, the only thing I can see coming out of this is one bankrupt Sony and millions of pissed off gamers.

Than what will we do? Give our money to Microsoft? *shudders*

Thank you for the nightmare, who needs sleep anyways, sleep is for NPC

 

[McGuinty1]

"If you can't trust a huge multi-national corporation like Sony to protect your private information, who can you trust," Maksimovic said in a statement. This is the second class action lawsuit that Sony has been hit with over the indicent, with the first recently filed [http://www.escapistmagazine.com/news/view/109620-Sony-Hit-With-Class-Action-Lawsuit-Over-PSN-Breach] in North America.

Hey Tom, last time I checked, Canada was in North America. Also to all our American friends, not all of us up here are knee-jerk litigious nutbars like this Natasha Maksimovic apparently is. I very much doubt this suit would hold up in any court, and if Sony were dumb enough to settle it out of court, then they deserve the same fate as the Austro-Hungarian Empire, to slowly collapse like a flan in a cupboard (10 points to whoever guesses which comedian that came from).

 

[Littlee300]

"If you can't trust a huge multi-national corporation like Sony to protect your private information, who can you trust?"

NO ONE! That's why it's called Private bloody information! There might be privacy policies intact but if you place 100% confidence in anyone with your personal/private information then you're a decent idiot. No one is safe. No one cannot be hit.
It's the internet!

A bank with a vault could still be robbed but that doesn't mean a bank with its money on the floor shouldn't be exempt. That may not be relevant in this case but its the principle.

 

[Littlee300]

Spoiler

Win, just win...