Sony Website Hacked By the "Lulz Boat"
- Thread starter Greg Tito
- Start date
If one good thing could be taken away from all of this, it's that we might actually get some privacy laws passed in the consumers' favor here in America...finally. There will definitely be some laws created now too forcing companies to use AES encryption over SSL tunnels so customer data transmission and storage is much, much more secure. It would take trillions of years to crack 256-bit AES encryption (if general stupidity can be avoided), so hackers would only be cracking stuff on pure luck.
It'd be nice if The Escapist started using security certificates too on their own as they are quite cheap now, but oh well. I'd like to believe they already use some sort of encryption for our passwords.
It'd be nice if The Escapist started using security certificates too on their own as they are quite cheap now, but oh well. I'd like to believe they already use some sort of encryption for our passwords.
That wouldn't be a problem if douchebag hackers didn't keep taking are info and exposing it to everyonespasicle said:
Lulzboat does make them sound 12 "We do it for the lulz" no self respecting adult would talk like thatWolfy2449 said:
So if they would have been like "yeah, we hacked that sony site and it was totally easy, but we wont show you what we got out of it" would you believed that they actually did it?
I sure wouldn't. It's one of these things that require evidence or it's unbelievable.
I sure wouldn't. It's one of these things that require evidence or it's unbelievable.
so what your saying is ?plz I don?t believe you put all of the inforation you have (or may have) got up on the net so we can see. That seems a little stupid to me and is against what a lot of ppl stand for in the hacking for loz community...Davroth said:
i don?t believe this ether coss i don?t buy that a SQL injection would work but I think your logic is flawed
whos 2 say it did we will never knowRainforce said:True, although you're quite humane to even consider it a "hack".danpascooch said:
(by all means, but using a simple sql injection cannot count, compared to all the crap that is possible)
Also plaintext PWs. This can just make you cry
"Oh noes, those terrible hackers!"
Oh no, that fucking terrible Sony. Christ, how little respect can you show your customers and users? It's a complete mockery that they think literally NO security is sufficient - there goes any semblance of respect I had for them in their relatively botched dealings right from the first hack.
Kinda funny to see them crumbling to a bunch of guys just casually having a laugh - it just shows how inadequately our personal data is being handled by the people we trust with it (and why you should NEVER give out accurate data to anywhere that's not delivering to you or important for, say, a job!)
Oh no, that fucking terrible Sony. Christ, how little respect can you show your customers and users? It's a complete mockery that they think literally NO security is sufficient - there goes any semblance of respect I had for them in their relatively botched dealings right from the first hack.
Kinda funny to see them crumbling to a bunch of guys just casually having a laugh - it just shows how inadequately our personal data is being handled by the people we trust with it (and why you should NEVER give out accurate data to anywhere that's not delivering to you or important for, say, a job!)
Why don't they hack Goldman Sachs or BP? People who have done REAL WRONG and not really been held accountable.
Yeah, just steal information and credit card numbers. You sure are fighting for freedom.
Jackasses.
Jackasses.
I'll give you credit. When you shovel bullshit, you use both hands. The original article removes most of the need for a true understanding of what level hacking was required. Read the language used. "Primitive." "Simple." "Botched." These words, and others, were chosen to make the task seem basic and easy. In fact, the article directly says as much.Doxcology said:
Seriously, who needs to know a lot about hacking, when the artcile itself directly tells people that the hack was simple and the security was "primitive?" Giving the name of an actual hacking technique seems, to me, like this group is using a trope called the "Genius Bonus." That way, a couple people who actually do know something about hacking will chime in with "My God! That was it? Sony, you fudge-donkeys!" Or, something to that effect. Then, people who don't know jack shit on the subject will see that post, and try to seem smart on the subject. "They're right! Sony sucks! Fuck you, Sony!" Have you actually read this thread? That's exactly what happened.
In fact, if you look one post below this one, you will see an example of precisely what I'm talking about.
Seriously?
An SQL injection?
To hack such a major site with an SQL injection should be like picking a tumbler lock with a sausage while wearing boxing gloves.
And better yet, storing all the data as plaintext?
This is beyond a disgrace.
That hacker group did the right thing doing what they did.
An SQL injection?
To hack such a major site with an SQL injection should be like picking a tumbler lock with a sausage while wearing boxing gloves.
And better yet, storing all the data as plaintext?
This is beyond a disgrace.
That hacker group did the right thing doing what they did.
It probably helps to completely forget about their rootkits and exploding laptops, too.Therumancer said:
That's what gets me. It's not like OtherOS removal was Sony's first fuck up. They just have a history of being dicks. But for some reason, they get away with it. I still don't fully get why.
"Lulz" hacker-types have a history of being dicks, and no one's running around saying we should feel bad for them. Sony's caught with their pants still down, waving their fanny at hackers everywhere, and people go all "leave Britney alone" about it. And it's their data that's being screwed with.
Maybe it's just ignorance. Or, maybe it's that we live in a consumerist world where we just can't stop consuming. Or, maybe it's just fanboyism, where the mere thought of my favorite system not being the best system is grounds for me to kick myself loose from reality. I have no delusions that Nintendo is evil, but if they do something spectacularly evil to me, I won't pay them for the privilege.
I'd been certain that Sony would die after installing rootkits through their CDs. Rootkits that opened up a backdoor in your computer that literally no antivirus could detect at the time. There was no reason to do it besides ripping open a hole in a users' security to throw in viruses. But still, Sony lives. And continues to do evil, retarded things to their own consumers.
So I guess it is consumerism. Because Sony can continue to shoot their fanbase at point-blank range and promise them coupons for band-aids to get them crawling back.
Just want to make sure I am understanding this: they want ME to donate money so that they can continue to hack sony and steal MY personal information? Oh, that is the plan? Yeah good luck. I am just going to continue to support sony, once your information is stolen once it really doesn't matter how many consecutive times its stolen.
After what Sony's been through lately in terms of security, being this vulnerable is completely unacceptable.Korten12 said:
Hell, being open to an SQL injection in the first place is unacceptable.
I don't think you realize just how bad that is.
If Sony is still this absurdly sloppy, they NEED to be severely slapped in the face.
Imagine if someone malicious were to hack them.
Then again, who's to say it hasn't already happened.
As competent as Sony is when it comes to security, hundreds of people could have hacked them and no one would know a thing.
They already have been, you know, with the whole PSN thing?Denamic said:
So far this seems like:
Two kids are fighting, and the larger kid knocks down the other one and tells him to defend, but instead of letting the other kid get up and try to defend. They continue to kick him while he is down and not let him get back up.