PlayStation Network Website
June 3, 2011 by USA Post
PlayStation Network Website, Sony is not having a good year. As the company is quick to get the PlayStation Network and service Qriocity online music again, is suffering from other breach of security.
This time it’s an attack by hackers on several websites associated with Sony Pictures. A team of people going by the name LulzSec, who recently managed to deface the main page PBS.org ‘s, announced they have entered SonyPictures.com and committed over 1 million user accounts. An additional 75,000 music codes and coupons from 3.5 million were discovered as well.
The attack, which is part of a campaign known as Sownage, it was announced on Twitter and LulzSec web page.
LulzSec said he had no resources to copy all the data could be accessed. But the group managed to grab a collection of databases that contain thousands of user names.
Accounts, probably associated with any type of activity recorded in SonyPictures.com (or their subsidiaries or partners), containing information such as passwords, email addresses, dates of birth and other Sony opt-in data.
This is certainly not as dangerous as the information that was exposed during the PSN hack, but still could be used to gain access to major accounts elsewhere.
The scariest part of this attack is not what it took, but how easy it was to take LulzSec members. According to the group’s own press release, access to the main page of Sony Pictures was obtained using a very basic tactic called SQL injection.
We have not had the opportunity to review the files released to see what this shot was, but chances are that one out of date software stack and web server relatively unprotected spend injection made trivial.
LulzSec says that all the information was not encrypted.
“Sony stores over 1,000,000 customers passwords in clear text,” the statement said the hackers “press”, which means that only a matter of taking it. ”
Since this is the second violation of the safety of a main website of the Sony brand in the outskirts of the week, we must ask: Is there anyone at Sony used to manage web security?
Sure, the management of a large number of brands and properties that have been linked in name only needs to be a challenge, not to mention the logistical and administrative challenges of managing Web sites that can store millions of user profiles. However, that does not make it that clearly is abysmal safety record.
LulzSec has been on a tear, infiltrating Web sites and databases for the TV show in the UK, “The X Factor”, parts of Fox.com, Sonymusic.co.jp and in many parts of PBS.org the last three weeks alone.
The attacks, though often minor in nature and implementation (web site Lulzsecurity.com plays the theme from “Love Boat”), underscore how important it is for brands to keep their web servers, updated, tempered and monitoring. At the age of simple editing tools such as WordPress, it is easy for managers to underestimate the importance of having someone in a contract or on staff to keep the data encrypted and protected.
We can only hope most recent cyber attacks to convince executives to seriously consider investing in online security.
Please feel free to send if you have any questions regarding this post , you can contact on
Disclaimer: The views expressed on this site are that of the authors and not necessarily that of U.S.S.POST.