Quantcast
Reports on Sony server security lack accuracy (Update) - Destructoid

DestructoidJapanatorTomopopFlixist



Reports on Sony server security lack accuracy (Update)


2:20 PM on 05.05.2011
Reports on Sony server security lack accuracy (Update) photo



Sony responded to the questions from the U.S. House of Representatives' Subcommittee on Commerce, Manufacturing and Trade with an open letter yesterday. But Dr. Gene Spafford, professor at the department of Computer Science at Purdue University, noted something interesting when speaking at the hearing.

Apparently, the Apache Web server software that Sony used was an outdated version and it also didn't have a firewall installed. Oooops.

Even better, that issue seems to have been "reported in an open forum monitored by Sony employees" about 2-3 months before the Anonymous attacks and subsequent other hacks happened. I think it's safe to say that if Anonymous knew about this, its attacks would've been more successful.

Actually, page 7 of this PDF that was inaccessible at the time of writing (maybe it hated foreigners) only said:

"Presumably, both companies are large enough that they could have afforded to spend an appropriate amount on security and privacy protections of their data; I have no information about what protections they had in place, although some news reports indicate that Sony was running software that was badly out of date, and had been warned about that risk."

Awesome. Thanks to the commenters for pointing out my failing though! It was deserved and I love you all. Community member KwikPwn also found the YouTube video of the hearing (the official webcast still gives 404 error) that shows Dr. Stafford's comments on the outdated Apache software and the lack of a firewall. Take a look for yourself!

Sony Was Using Outdated Software Prior to PSN Breach [GamePro] [Image]






Comments not appearing? Anti-virus apps like Avast or some browser extensions can cause this.
Easy fix: Add   [*].disqus.com   to your software's white list. Tada! Happy comments time again.

Did you know? You can now get daily or weekly email notifications when humans reply to your comments.






Hacking

12:45 PM on 02.18.2014
Hack the planet: Disrupt is up on Steam Greenlight

Despite all of the art and design that goes into creating expansive worlds in an effort to create immersion, few games make the player actually feel like he is doing the things on screen quite like Uplink once did. Certainly...more



2:30 PM on 12.30.2013
Streaming games from PC to the Wii U GamePad possible

Hackers booto, delroth, and shuffle2 have reverse engineered the Wii U GamePad and the results are impressive. The group's findings were presented at the Chaos Communication Congress including a demonstration in which The Le...more



4:15 PM on 12.16.2013
New consoles have brought a surge in hacking attempts

The gaming world isn't the only group of people that's excited by the recent launch of new consoles. It turns out that the hacker community's just as thrilled. Unsurprisingly, it seems that its intententions are far more nefa...more



View all Hacking






Back to Top




All content is yours to recycle through our Creative Commons License permitting non-commercial sharing requiring attribution. Our communities are obsessed with videoGames, movies, anime, and toys.

Living the dream since March 16, 2006

Advertising on destructoid is available: Please contact them to learn more