To the people saying that Live could be breached like Sony.

[Crazycat690]

It could, in fact I'd say PSN was more secure than XBL, the hackers simply organized against Sony. Now you say MS is rich, as one of your reasons, well the thing is they got rich by selling a mediocre or even broken product, I take it you've never heard of that there's scams and hacks going on all the time on XBL? And that's not even by groups or any big names, the only problem here is that Sony wanted to fight these criminals, and that happened, MS don't care, so hackers were kinda happy since they are allowed to fuck around on the 360 and on the network. If they'd attempt to take legal actions, the same thing would happen faster and worse to the 360.

 

[Ren3004]

Yes, because Sony is a family business that operates out of a shed. Oh, wait...

Yeah, anything can be hacked. LIVE may not have had any security breaches yet, at least not that I remember, but the service has been down a few times.

Oh, and before anyone says that I'm a PS3 fanboy, I own a 360 and a Wii.

 

[funguy2121]

I can personally attest that my credit card information was stolen by an identity theif when I used it to open a Live account. It may not be 25 million people, but there are definately people who hack credit card numbers through Xbox Live.

I don't mean to call you out here, but do you have solid evidence to show that it was stolen as a result of signing up for Live? People become victims of identity theft all the time, and statistically it's highly probable that there are people out there who were victimized right around the same time as they signed up for live. That is to say that correlation does not show causation.

Did you perform a legitimate investigation which showed that your card information was stolen through XBL? Or is it just the case that it was stolen in a time which incidentally happened to be close to when you signed up for Live and you assumed it was stolen through XBL?

I don't mean to say that it couldn't happen, just that it seems more likely to me that it was some vulnerability in your own network, or that you got victimized through some other source. I would think that if you had actually had your information stolen through XBL there would be more people who had their information stolen in the same way, and it would be a bigger story.

The other way to phrase that question is "why would hackers only target you if they had the capability to hack anyone through XBL?"

Actually if you have a firm grasp of logic and common sense, the fact his card became compromised right when he signed up for XBL is proof that it is a problem local to him and not of the XBL service being hacked.


Being keylogged or having data intercepted over a wireless connection = simple hack/virus.

XBL being hacked to steal account numbers in real time as they sign up = incredibly complicated hack. In fact, why steal incoming signees and not just grab a million account numbers from the existing database?


I bet this guy blames Blizzard for his WoW account being hacked instead of changing his email password or scanning for a keylogger.

I don't recall any "blame" in his statements that you quoted. You guys can really be dickish about things that happen to other people. Perhaps this guy's not a hacker, but reading his tone and yours, I would guess he has far superior social skills.

 

[Hgame]

This wouldn't happen. Not now. Not ever.

This mindset is why the PSN was hacked.

The vast difference between Sony's resources and Microsoft's is one reason.

Microsoft's assets were roughly $86 billion as of 2010, Sony's assets were roughly $136 billion as of 2009.

There is also the fact that Live is a subsidiary of Microsoft. Microsoft, you know one of the largest corporations on Earth owned by the second richest man in the world that you would have to be brain dead to take on or try to hack.

First, the personal wealth of Bill Gates has nothing to do with the finances of Microsoft. Second, Gates stepped down as primary manager of Microsoft in 2006, handing his duties as Chief Strategy Officer over to Craig Mundie, and his position as Chief Software Architect to Ray Ozzie, the transition for which was finalized in 2008. He hasn't been CEO since 2000, where he handed that over to Steve Ballmer.

Theres also the fact that people knew that Sony's servers were insecure. You hear all these people saying they knew they were insecure, but you don't hear that about Live.

Unless you worked within Sony, you weren't hearing that their servers were insecure until after the hack had occurred (at which point you could just assume they were insecure).

And another reason is that the hated "You have to pay" feature makes it where their are a lot of people dedicated to it and gives it a higher priority within Microsoft than the PS3 has in Sony, because the Xbox and it's services ae a money maker unlike the PS3 which is still losing money on its consoles.

Do you know how many personnel are dedicated to serving XBL / PSN? Any idea? General number? Anything. Do you have any even tangential proof of this, or is it just an assumption on your part?


PS: I don't own a PS3. I'm xbox-only.

When you look at equity, Microsoft's is 40% (roughly) larger. And Microsoft has a programming talent base that dwarfs Sony's, and all their experience from making Windows.

 

[funguy2121]

Snip

And my last point will be that you have horrible grammar. A bad thing when trying to sound serious.

It should be a semi colon, not a full stop; it doesn't currently make grammatical sense. Ouch...

This thread is nerd-riffic! Seriously, I just came!

 

[Buizel91]

There's less discussion value here then people on the PSN security team!

Ba dum tsh.

Sir...i love you please accept this gift...

Spoiler

OT: Meh, it could be hacked, but it would take a while, and probably wouldn't be as bad as what happened to Sony.

And even if they did, Microsoft would be on them before they could actually say "We hacked Microsoft"

 

[Yureina]

Microsoft, you know one of the largest corporations on Earth owned by the second richest man in the world that you would have to be brain dead to take on or try to hack.

Actually... in the minds of some people, pissing off and taking on Bill Gates would actually be a reason to go after XBL. Microsoft has alot of people who think they are evil and deserve to get kicked around.

I'm just saying.

 

[JackWestJr]

c'mon people stop complaining. ANYTHING can be hacked, Sony were idiots, Xbox has to pay, WHO CARES.

 

[Daveman]

Now I wait, because this site has many more PS3 fanboys than Xbox.

lol, really? I love it when people come on here and make these assertions. Frankly I never notice anything like that... except for the new MLP fans who seem to be everywhere.

 

[Ghengis John]

And yes Sony didn't show put to the hearing. I don't know why. I personally would love to know why this happened and eventually all this will come to light. Until then I am not going to go around touting hearsay as fact.

Well if you had paid closer attention to the story you'd have noticed that the "numerous weaknesses in Sony's system" that Dr Spafford claimed were evident and are separate from the claims of Sony employees. So as a matter of public record, the case for criminal negligence is still wide open, and the shoddy nature of how they were run readily apparent. As for those Sony employees between professional survival and non disclosure agreements it seems entirely unlikely they will step forward. however I doubt the man who wrote the oldest journal in the field of information security is going to readily go "hay I read that some people that worked for Sony said the system was out dated." It's safe to assume that he knows a thing or two about what he's talking about and these reports had some credibility. Your refusal to accept this probably has less to do with procedural integrity and more to do with misguided allegiances.

If you think there's a great mystery behind sony's refusal to testify before the congressional committee then all the more so.

 

[Worgen]

live can be hacked but the odds of it being hacked are much slimmer since its MS and they actually make networking tech so they tend to understand it and the need for security a bit better then most.... altho just watch, I wouldnt be surprised if they got hacked like next week just to annoy me and prove my point wrong

 

[funguy2121]

Just a gentle reminder. As a person who abhors marketing in general, I rather love these guys (more so the writers).

 

[thephich]

Saying something is unsinkable/unhackable is just tempting fate.

None of reasons provided by OP are really that much of a deterrent in my view, if anything hackers would relish a tough challenge if someone proclaims their system to be "unhackable", then it will be hacked just to prove a point.

Not to be insensitive but, do you think thats what God thought about the Titanic when we called it the unsinkable ship?

 

[Onyx Oblivion]

I am now going to dedicate my entire lack of a life to hacking XBL.

 

[RoBi3.0]

And yes Sony didn't show put to the hearing. I don't know why. I personally would love to know why this happened and eventually all this will come to light. Until then I am not going to go around touting hearsay as fact.

Well if you had paid closer attention to the story you'd have noticed that the "numerous weaknesses in Sony's system" that Dr Spafford claimed were evident and are separate from the claims of Sony employees. So as a matter of public record, the case for criminal negligence is still wide open, and the shoddy nature of how they were run readily apparent. As for those Sony employees between professional survival and non disclosure agreements it seems entirely unlikely they will step forward. however I doubt the man who wrote the oldest journal in the field of information security is going to readily go "hay I read that some people that worked for Sony said the system was out dated." It's safe to assume that he knows a thing or two about what he's talking about and these reports had some credibility. Your refusal to accept this probably has less to do with procedural integrity and more to do with misguided allegiances.

Look here is a quote from his written testimony

"I have no information about what protections they had in place, although some
news reports indicate that Sony was running software that was badly out of date, and had
been warned about that risk."

Tell me how that equates to; Hey it is a fact that Sony was using outdated software and no firewall. Hell he even admits that he has no information about Sony's systems.

And as for last last remark I have been playing the hell out of the Gears of War Beta and CoD:blackops on xbox live lately and in fact spend the majority of my gaming time playing WoW or DDO. So if this was a thread about how Blizzard or Turbine got hacked then you may have a point.

 

[Frankster]

Not to be insensitive but, do you think thats what God thought about the Titanic when we called it the unsinkable ship?

Haha i doubt s/he/it (im agnostic so open minded towards god stuff xD) truly cared that much about the rantings of mortals, but must have found the situation ironic for sure.

 

[Ghengis John]

Look here is a quote from his written testimony

"I have no information about what protections they had in place, although some
news reports indicate that Sony was running software that was badly out of date, and had
been warned about that risk."

Tell me how that equates to; Hey it is a fact that Sony was using outdated software and no firewall. Hell he even admits that he has no information about Sony's systems.

It doesn't. But there's no mention of internet forums, apache servers or firewalls here and all press reports mention these things so surely we're missing something in the written testimony. The options are there's a follow-up to this testimony or a vast conspiracy. Meanwhile this line from the same testimony is pretty damning:

My personal conclusion from reviews of reports in the press and discussions at professional meetings is that operators of these systems continue to run outmoded, flawed software, fail tofollow some basic good practices of security and privacy, and often have insufficient training or support.

And as for last last remark I have been playing the hell out of the Gears of War Beta and CoD:blackops on xbox live lately and in fact spend the majority of my gaming time playing WoW or DDO. So if this was a thread about how Blizzard or Turbine got hacked then you may have a point.

My sincerest apologies sir. *tip of the hat*

 

[Christian Lerche]

This is how I see it. When you put your credit card and personal information on a GAME console, you're asking for it. If you want it protected, don't buy from the internet, connect using dummy accounts, and buy pre paid cards. Infrastructure is ALWAYS flawed. There is no safe guards once you put out your personal info on the net, the threat of identity theft is there as soon you have an IP adress, personal emailaccount that both covers facebook, youtube, psn xbox live AND you legal purchases of stuff. That's basic internet security 101.

 

[Pyro Paul]

This wouldn't happen. Not now. Not ever. The vast difference between Sony's resources and Microsoft's is one reason. There is also the fact that Live is a subsidiary of Microsoft. Microsoft, you know one of the largest corporations on Earth owned by the second richest man in the world that you would have to be brain dead to take on or try to hack. Theres also the fact that people knew that Sony's servers were insecure. You hear all these people saying they knew they were insecure, but you don't hear that about Live. And another reason is that the hated "You have to pay" feature makes it where their are a lot of people dedicated to it and gives it a higher priority within Microsoft than the PS3 has in Sony, because the Xbox and it's services ae a money maker unlike the PS3 which is still losing money on its consoles.

tl;dr Live wont be hacked

Now I wait, because this site has many more PS3 fanboys than Xbox.

Xbox LIVE has already been hacked having account information stolen

http://playsquad.commongate.com/post/Xbox_Live_hacked_accounts_stolen/

The big diffrence?

Microsoft doesn't care about you.
Just because your idenity might be stolen and CCN sold on the internet is no reason for Microsoft to stop its LIVE service to better protect you! They have money to make, and obviously you don't have any more money because it was stolen!

 

[Sion_Barzahd]

I was actually a helluva lot surprised by how little security Sony apparently had on those files. Its almost like they were giving them away.
I can at least hope that Microsoft will have better security in place. Though just because Bill Gates has a lot of money doesn't exactly mean that they will do.
I mean i lock my door every night but my rich friend at the other end of town usually doesn't bother. Money isn't equal to security.

At the very least though, i reckon Microsoft are going to be adding a bit of additional security now, after seeing Sony's disaster. At least if i was in charge of it i would be. Nothing screams wake up call like seeing your biggest rival go through a huge disaster like this.