Sony Website Hacked By the "Lulz Boat"

[Aesir23]

So...in order to alert people to the security flaws, they have stolen account information and posted said information online. Yeah, I'm not buying the whole 'we just wanted to point it out' argument. Bloody assholes.

 

[BoogieManFL]

This used to be interesting news. No longer. Now it's just annoying.

Just because you can do something doesn't mean you should.

 

[MrTub]

An SQL Injection is not a fucking mega super hack okay? Don't feel bad for Sony or wag your fingers at these hackers because it's one of the easiest exploits in the book. Also the fact that it was plaintext was even worse, honestly I would throw a piss fit at these hackers if they didn't hack Sony after finding such a blatant flaw.

So the hackers.. teh guys who just did something completely illegal "claimed" to do something and said it was easy without actual proof. And you just believe them? They could have been working on this for days, weeks months, you have NO idea. You just believe with blind faith at what these guys have done.

Is there any better then having blind faith that the corporations are telling the truth?

Since they didn't crack into my website and steal everything, yea of course. I don't align myself with poeple who do unlawful things "to make a point"

Wow.. if you really think you can trust any corporation since they didnt hack into your website says a lot about you (IMO).

Wow, if you really think you can trust a bunch of faceless random poeple who's entire goal revolves around criminal activity, i think it says even more about you.

=) when did I say I trust them? if you would please read my posts you will see that I've wrote with current information and with what they are claiming. So if some new trustworthy information shows up that says Sony had a very good security system and the hackers was lucky/skilled then I will change my stance on this.

I never said it was the truth.

I do not trust corporations and I do not trust hackers aswell.

Hope that would clear something up.

You trust there word enough to keep repeating it over and over. There you go back peddling again. You have repeated over a dozen times what the "hackers have claimed to do" and blamed sony for not defending themselves against it.

This has been your one constant argument. even through you have NO IDEA if its truth or not. You TRUST the word of the hackers enough to smear it all over this thread.

STOP BACK PEDDLING.

You trust there word?

With current information I cannot assume that Sony is right considering they have history of having a bad security and since I havent seen that they have denied that the information was not encrypted.


And the fact is you have no idea what the truth is either so to say that Im wrong is wrong itself.

Fact is that a lot of people seems to trust this enough that this should be news worthy and it was already smeared on this thread.

 

[Matterer]

Dear Lulzboat,

I appreciate the thought (assuming its the truth) but please stop causeing damage to the economic system, especially in this economy. Your affecting more than Sony. Also, you are refering to Sony as a person who simply ignored the public's security need. However, the people resonsible for the security thing are probably only a few people, whereas what you have done will affect the entire company, posibly causeing a lot of lay-offs. If you mean well, be more descrete in the future please. And if your lieing and dont mean well, then, just stop.

Thanks, Everyone

 

[smithy1234]

An SQL Injection is not a fucking mega super hack okay? Don't feel bad for Sony or wag your fingers at these hackers because it's one of the easiest exploits in the book. Also the fact that it was plaintext was even worse, honestly I would throw a piss fit at these hackers if they didn't hack Sony after finding such a blatant flaw.

So the hackers.. teh guys who just did something completely illegal "claimed" to do something and said it was easy without actual proof. And you just believe them? They could have been working on this for days, weeks months, you have NO idea. You just believe with blind faith at what these guys have done.

Is there any better then having blind faith that the corporations are telling the truth?

Since they didn't crack into my website and steal everything, yea of course. I don't align myself with poeple who do unlawful things "to make a point"

Wow.. if you really think you can trust any corporation since they didnt hack into your website says a lot about you (IMO).

Wow, if you really think you can trust a bunch of faceless random poeple who's entire goal revolves around criminal activity, i think it says even more about you.

What are you saying the hacker group has lied about exactly? It seems pretty straightforward, the group used an SQL injection to get into the databases and then published the un-encrypted plaintext passwords online...

I never said they lied, but that doesn't mean they told the truth. And just blindly assuming they did after everything they have done, is pure insanity.

But.. They have nothing to lie about.. They're just reporting on what they did and what they did is very clearly not a lie, considering the fact that they have the authentic list of plaintext user info lol

I think you're a little bit confused and slightly paranoid...

 

[Master Kuja]

The attack was not made maliciously but in order to instruct the public about Sony's awful security practices. "Our goal here is not to come across as master hackers, hence what we're about to reveal: SonyPictures.com was owned by a very simple SQL injection, one of the most primitive and common vulnerabilities, as we should all know by now. From a single injection, we accessed everything. Why do you put such faith in a company that allows itself to become open to these simple attacks?"

No.
NO.
ABSOLUTELY FUCKING NOT.

I REFUSE to accept this BULLSHIT logic, if this attack had no malicious intent, they wouldn't have gone and made 1 million people's details FUCKING PUBLIC ON THEIR WEBSITE.

What sort of absolutely ass backwards logic are these people working with? This isn't lulz, this is anything but. I cannot. CANNOT understand why the hell these people (and I struggle to even call them that) seem to be able to justify making so many people's email addresses and passwords public and then say "Oh but this had no malicious intent!"

Bull. Fucking. Shit.

This is...This is the logical path of psychopathology, justifying this by saying "they deserved it" is terrifying. These people are...Jeez...I don't even know what to say any more, this is beyond pathetic.

 

[MrTub]

An SQL Injection is not a fucking mega super hack okay? Don't feel bad for Sony or wag your fingers at these hackers because it's one of the easiest exploits in the book. Also the fact that it was plaintext was even worse, honestly I would throw a piss fit at these hackers if they didn't hack Sony after finding such a blatant flaw.

So the hackers.. teh guys who just did something completely illegal "claimed" to do something and said it was easy without actual proof. And you just believe them? They could have been working on this for days, weeks months, you have NO idea. You just believe with blind faith at what these guys have done.

Is there any better then having blind faith that the corporations are telling the truth?

Since they didn't crack into my website and steal everything, yea of course. I don't align myself with poeple who do unlawful things "to make a point"

Wow.. if you really think you can trust any corporation since they didnt hack into your website says a lot about you (IMO).

Wow, if you really think you can trust a bunch of faceless random poeple who's entire goal revolves around criminal activity, i think it says even more about you.

=) when did I say I trust them? if you would please read my posts you will see that I've wrote with current information and with what they are claiming. So if some new trustworthy information shows up that says Sony had a very good security system and the hackers was lucky/skilled then I will change my stance on this.

I never said it was the truth.

I do not trust corporations and I do not trust hackers aswell.

Hope that would clear something up.

You trust there word enough to keep repeating it over and over. There you go back peddling again. You have repeated over a dozen times what the "hackers have claimed to do" and blamed sony for not defending themselves against it.

This has been your one constant argument. even through you have NO IDEA if its truth or not. You TRUST the word of the hackers enough to smear it all over this thread.

STOP BACK PEDDLING.

You trust there word?

With current information I cannot assume that Sony is right considering they have history of having a bad security and since I havent seen that they have denied that the information was not encrypted.


And the fact is you have no idea what the truth is either so to say that Im wrong is wrong itself.

Fact is that a lot of people seems to trust this enough that this should be news worthy and it was already smeared on this thread.

Than by your argument we are both completely wrong. If you can argue that "they did" and base everything upon this notion, than I have every right to argue that "they didn't" and argue against it. not one of us will be any more right than the other. even through trusting known criminals makes you seem loopy to everyone else.

We can argue back and forth on this all night.

Yeah but you seems to be argue that I cannot assume that hackers have told the truth considering they have some evidence and the Sony have been hacked before and since if they really had a strong protection im pretty sure they would be very fast to report that indeed got hacked with something "stronger" then a SQL injection

 

[MrTub]

An SQL Injection is not a fucking mega super hack okay? Don't feel bad for Sony or wag your fingers at these hackers because it's one of the easiest exploits in the book. Also the fact that it was plaintext was even worse, honestly I would throw a piss fit at these hackers if they didn't hack Sony after finding such a blatant flaw.

So the hackers.. teh guys who just did something completely illegal "claimed" to do something and said it was easy without actual proof. And you just believe them? They could have been working on this for days, weeks months, you have NO idea. You just believe with blind faith at what these guys have done.

Is there any better then having blind faith that the corporations are telling the truth?

Since they didn't crack into my website and steal everything, yea of course. I don't align myself with poeple who do unlawful things "to make a point"

Wow.. if you really think you can trust any corporation since they didnt hack into your website says a lot about you (IMO).

Wow, if you really think you can trust a bunch of faceless random poeple who's entire goal revolves around criminal activity, i think it says even more about you.

=) when did I say I trust them? if you would please read my posts you will see that I've wrote with current information and with what they are claiming. So if some new trustworthy information shows up that says Sony had a very good security system and the hackers was lucky/skilled then I will change my stance on this.

I never said it was the truth.

I do not trust corporations and I do not trust hackers aswell.

Hope that would clear something up.

You trust there word enough to keep repeating it over and over. There you go back peddling again. You have repeated over a dozen times what the "hackers have claimed to do" and blamed sony for not defending themselves against it.

This has been your one constant argument. even through you have NO IDEA if its truth or not. You TRUST the word of the hackers enough to smear it all over this thread.

STOP BACK PEDDLING.

You trust there word?

With current information I cannot assume that Sony is right considering they have history of having a bad security and since I havent seen that they have denied that the information was not encrypted.


And the fact is you have no idea what the truth is either so to say that Im wrong is wrong itself.

Fact is that a lot of people seems to trust this enough that this should be news worthy and it was already smeared on this thread.

Than by your argument we are both completely wrong. If you can argue that "they did" and base everything upon this notion, than I have every right to argue that "they didn't" and argue against it. not one of us will be any more right than the other. even through trusting known criminals makes you seem loopy to everyone else.

We can argue back and forth on this all night.

Yeah but you seems to be argue that I cannot assume that hackers have told the truth considering they have some evidence and the Sony have been hacked before and since if they really had a strong protection im pretty sure they would be very fast to report that indeed got hacked with something "stronger" then a SQL injection

There entire network was brought to a halt and it took them 4 weeks. The aggressiveness of the hack has little to nothing to do with the response time.

0.o? May I ask what you are responding to?

 

[Kopikatsu]

The attack was not made maliciously but in order to instruct the public about Sony's awful security practices. "Our goal here is not to come across as master hackers, hence what we're about to reveal: SonyPictures.com was owned by a very simple SQL injection, one of the most primitive and common vulnerabilities, as we should all know by now. From a single injection, we accessed everything. Why do you put such faith in a company that allows itself to become open to these simple attacks?"

No.
NO.
ABSOLUTELY FUCKING NOT.

I REFUSE to accept this BULLSHIT logic, if this attack had no malicious intent, they wouldn't have gone and made 1 million people's details FUCKING PUBLIC ON THEIR WEBSITE.

What sort of absolutely ass backwards logic are these people working with? This isn't lulz, this is anything but. I cannot. CANNOT understand why the hell these people (and I struggle to even call them that) seem to be able to justify making so many people's email addresses and passwords public and then say "Oh but this had no malicious intent!"

Bull. Fucking. Shit.

This is...This is the logical path of psychopathology, justifying this by saying "they deserved it" is terrifying. These people are...Jeez...I don't even know what to say any more, this is beyond pathetic.

I've seen some of the files that LulzSec posted. They all have phrases like 'Go wild!' and 'Plunder what you can!' before listing the information. They're really just a group of jerkoffs.

An SQL Injection is not a fucking mega super hack okay? Don't feel bad for Sony or wag your fingers at these hackers because it's one of the easiest exploits in the book. Also the fact that it was plaintext was even worse, honestly I would throw a piss fit at these hackers if they didn't hack Sony after finding such a blatant flaw.

So the hackers.. teh guys who just did something completely illegal "claimed" to do something and said it was easy without actual proof. And you just believe them? They could have been working on this for days, weeks months, you have NO idea. You just believe with blind faith at what these guys have done.

Is there any better then having blind faith that the corporations are telling the truth?

Since they didn't crack into my website and steal everything, yea of course. I don't align myself with poeple who do unlawful things "to make a point"

Wow.. if you really think you can trust any corporation since they didnt hack into your website says a lot about you (IMO).

Wow, if you really think you can trust a bunch of faceless random poeple who's entire goal revolves around criminal activity, i think it says even more about you.

=) when did I say I trust them? if you would please read my posts you will see that I've wrote with current information and with what they are claiming. So if some new trustworthy information shows up that says Sony had a very good security system and the hackers was lucky/skilled then I will change my stance on this.

I never said it was the truth.

I do not trust corporations and I do not trust hackers aswell.

Hope that would clear something up.

You trust there word enough to keep repeating it over and over. There you go back peddling again. You have repeated over a dozen times what the "hackers have claimed to do" and blamed sony for not defending themselves against it.

This has been your one constant argument. even through you have NO IDEA if its truth or not. You TRUST the word of the hackers enough to smear it all over this thread.

STOP BACK PEDDLING.

You trust there word?

With current information I cannot assume that Sony is right considering they have history of having a bad security and since I havent seen that they have denied that the information was not encrypted.


And the fact is you have no idea what the truth is either so to say that Im wrong is wrong itself.

Fact is that a lot of people seems to trust this enough that this should be news worthy and it was already smeared on this thread.

Than by your argument we are both completely wrong. If you can argue that "they did" and base everything upon this notion, than I have every right to argue that "they didn't" and argue against it. not one of us will be any more right than the other. even through trusting known criminals makes you seem loopy to everyone else.

We can argue back and forth on this all night.

Yeah but you seems to be argue that I cannot assume that hackers have told the truth considering they have some evidence and the Sony have been hacked before and since if they really had a strong protection im pretty sure they would be very fast to report that indeed got hacked with something "stronger" then a SQL injection

Sony hasn't made any kind of statement yet, and LulzSec doesn't really have any evidence. Unless you wanted to go try to get information from Sony using a SQL Injection right now and find out if it works.

I agree with Clip, though. Taking criminals who hide behind internet anonymity at their word isn't the best idea in the world.

 

[smithy1234]

An SQL Injection is not a fucking mega super hack okay? Don't feel bad for Sony or wag your fingers at these hackers because it's one of the easiest exploits in the book. Also the fact that it was plaintext was even worse, honestly I would throw a piss fit at these hackers if they didn't hack Sony after finding such a blatant flaw.

So the hackers.. teh guys who just did something completely illegal "claimed" to do something and said it was easy without actual proof. And you just believe them? They could have been working on this for days, weeks months, you have NO idea. You just believe with blind faith at what these guys have done.

Is there any better then having blind faith that the corporations are telling the truth?

Since they didn't crack into my website and steal everything, yea of course. I don't align myself with poeple who do unlawful things "to make a point"

Wow.. if you really think you can trust any corporation since they didnt hack into your website says a lot about you (IMO).

Wow, if you really think you can trust a bunch of faceless random poeple who's entire goal revolves around criminal activity, i think it says even more about you.

What are you saying the hacker group has lied about exactly? It seems pretty straightforward, the group used an SQL injection to get into the databases and then published the un-encrypted plaintext passwords online...

I never said they lied, but that doesn't mean they told the truth. And just blindly assuming they did after everything they have done, is pure insanity.

But.. They have nothing to lie about.. They're just reporting on what they did and what they did is very clearly not a lie, considering the fact that they have the authentic list of plaintext user info lol

I think you're a little bit confused and slightly paranoid...

And i think your insanely naive for trusting "lulz boat"

Guess we are at a impasse.

But....... Okay look, there's nothing to distrust about their statement! They have nothing to lie about so saying I'm naive for "trusting" a statement that has no reason to be deceptive is sorry for the expression but "fucking loopy".

It's like if you went to get a medium coffee at a coffee shop and then accusing the manager of giving you a decaf when you get your order. They have no reason to lie to you about your order but you accuse them of being deceptive anyways.

 

[MrTub]

The attack was not made maliciously but in order to instruct the public about Sony's awful security practices. "Our goal here is not to come across as master hackers, hence what we're about to reveal: SonyPictures.com was owned by a very simple SQL injection, one of the most primitive and common vulnerabilities, as we should all know by now. From a single injection, we accessed everything. Why do you put such faith in a company that allows itself to become open to these simple attacks?"

No.
NO.
ABSOLUTELY FUCKING NOT.

I REFUSE to accept this BULLSHIT logic, if this attack had no malicious intent, they wouldn't have gone and made 1 million people's details FUCKING PUBLIC ON THEIR WEBSITE.

What sort of absolutely ass backwards logic are these people working with? This isn't lulz, this is anything but. I cannot. CANNOT understand why the hell these people (and I struggle to even call them that) seem to be able to justify making so many people's email addresses and passwords public and then say "Oh but this had no malicious intent!"

Bull. Fucking. Shit.

This is...This is the logical path of psychopathology, justifying this by saying "they deserved it" is terrifying. These people are...Jeez...I don't even know what to say any more, this is beyond pathetic.

I've seen some of the files that LulzSec posted. They all have phrases like 'Go wild!' and 'Plunder what you can!' before listing the information. They're really just a group of jerkoffs.

An SQL Injection is not a fucking mega super hack okay? Don't feel bad for Sony or wag your fingers at these hackers because it's one of the easiest exploits in the book. Also the fact that it was plaintext was even worse, honestly I would throw a piss fit at these hackers if they didn't hack Sony after finding such a blatant flaw.

So the hackers.. teh guys who just did something completely illegal "claimed" to do something and said it was easy without actual proof. And you just believe them? They could have been working on this for days, weeks months, you have NO idea. You just believe with blind faith at what these guys have done.

Is there any better then having blind faith that the corporations are telling the truth?

Since they didn't crack into my website and steal everything, yea of course. I don't align myself with poeple who do unlawful things "to make a point"

Wow.. if you really think you can trust any corporation since they didnt hack into your website says a lot about you (IMO).

Wow, if you really think you can trust a bunch of faceless random poeple who's entire goal revolves around criminal activity, i think it says even more about you.

=) when did I say I trust them? if you would please read my posts you will see that I've wrote with current information and with what they are claiming. So if some new trustworthy information shows up that says Sony had a very good security system and the hackers was lucky/skilled then I will change my stance on this.

I never said it was the truth.

I do not trust corporations and I do not trust hackers aswell.

Hope that would clear something up.

You trust there word enough to keep repeating it over and over. There you go back peddling again. You have repeated over a dozen times what the "hackers have claimed to do" and blamed sony for not defending themselves against it.

This has been your one constant argument. even through you have NO IDEA if its truth or not. You TRUST the word of the hackers enough to smear it all over this thread.

STOP BACK PEDDLING.

You trust there word?

With current information I cannot assume that Sony is right considering they have history of having a bad security and since I havent seen that they have denied that the information was not encrypted.


And the fact is you have no idea what the truth is either so to say that Im wrong is wrong itself.

Fact is that a lot of people seems to trust this enough that this should be news worthy and it was already smeared on this thread.

Than by your argument we are both completely wrong. If you can argue that "they did" and base everything upon this notion, than I have every right to argue that "they didn't" and argue against it. not one of us will be any more right than the other. even through trusting known criminals makes you seem loopy to everyone else.

We can argue back and forth on this all night.

Yeah but you seems to be argue that I cannot assume that hackers have told the truth considering they have some evidence and the Sony have been hacked before and since if they really had a strong protection im pretty sure they would be very fast to report that indeed got hacked with something "stronger" then a SQL injection

Sony hasn't made any kind of statement yet, and LulzSec doesn't really have any evidence. Unless you wanted to go try to get information from Sony using a SQL Injection right now and find out if it works.

So you are saying all the information they posted is not evidence that they indeed did hack them?

 

[Frotality]

inept security hacked by childish criminals.

lulzboat really did prove their point quite effectively; some amateur hackers were fucking around after hearing how sony had been hacked, but their incredibly basic attempt actually succeeded. in a chaotic effort to cover themselves, they tried to play off the popularity of geohotz and anon and say that it was some altruistic effort to expose sony's incompetence.

you know, ever since i was a kid i always dreamed what it would be like if instead of nintendo, my parents bought sony's consoles and games, to grow up playing silent hill and final fantasy instead of mario and zelda. now that ive been seeing what the eventual result of dedication to sony is, i can now say with a straight face that im glad im stuck with the wii and not the ps3.

 

[MrTub]

An SQL Injection is not a fucking mega super hack okay? Don't feel bad for Sony or wag your fingers at these hackers because it's one of the easiest exploits in the book. Also the fact that it was plaintext was even worse, honestly I would throw a piss fit at these hackers if they didn't hack Sony after finding such a blatant flaw.

So the hackers.. teh guys who just did something completely illegal "claimed" to do something and said it was easy without actual proof. And you just believe them? They could have been working on this for days, weeks months, you have NO idea. You just believe with blind faith at what these guys have done.

Is there any better then having blind faith that the corporations are telling the truth?

Since they didn't crack into my website and steal everything, yea of course. I don't align myself with poeple who do unlawful things "to make a point"

Wow.. if you really think you can trust any corporation since they didnt hack into your website says a lot about you (IMO).

Wow, if you really think you can trust a bunch of faceless random poeple who's entire goal revolves around criminal activity, i think it says even more about you.

=) when did I say I trust them? if you would please read my posts you will see that I've wrote with current information and with what they are claiming. So if some new trustworthy information shows up that says Sony had a very good security system and the hackers was lucky/skilled then I will change my stance on this.

I never said it was the truth.

I do not trust corporations and I do not trust hackers aswell.

Hope that would clear something up.

You trust there word enough to keep repeating it over and over. There you go back peddling again. You have repeated over a dozen times what the "hackers have claimed to do" and blamed sony for not defending themselves against it.

This has been your one constant argument. even through you have NO IDEA if its truth or not. You TRUST the word of the hackers enough to smear it all over this thread.

STOP BACK PEDDLING.

You trust there word?

With current information I cannot assume that Sony is right considering they have history of having a bad security and since I havent seen that they have denied that the information was not encrypted.


And the fact is you have no idea what the truth is either so to say that Im wrong is wrong itself.

Fact is that a lot of people seems to trust this enough that this should be news worthy and it was already smeared on this thread.

Than by your argument we are both completely wrong. If you can argue that "they did" and base everything upon this notion, than I have every right to argue that "they didn't" and argue against it. not one of us will be any more right than the other. even through trusting known criminals makes you seem loopy to everyone else.

We can argue back and forth on this all night.

Yeah but you seems to be argue that I cannot assume that hackers have told the truth considering they have some evidence and the Sony have been hacked before and since if they really had a strong protection im pretty sure they would be very fast to report that indeed got hacked with something "stronger" then a SQL injection

There entire network was brought to a halt and it took them 4 weeks. The aggressiveness of the hack has little to nothing to do with the response time.

0.o? May I ask what you are responding to?

"im pretty sure they would be very fast to report that indeed got hacked with something "stronger" then a SQL injection"

and as if that wasn't stupid enough they STILL wouldn't have said anything until the day it was downed. They could have dropped a nuke on sony and it wouldn't have been posed until results where made.

Again wtf does that have do with 4 weeks?

 

[Kopikatsu]

Snip

I don't doubt that LulzSec did in fact hack Sony. But the exact methods they used (and the time it took them to do so) is up in the air. Unless you can go to Sony Pictures right now and gather information with a SQL injection, it's...difficult to take LulzSec at face value. Especially when they've stated that their goal is to bring Sony down.

 

[Dango]

Wouldn't telling Sony their security sucks be a bit more practical than hacking into their website and screwing over hundreds of thousands of innocent people?

These guys have the opposite or moral, and mental, high ground.