Game database:   #ABCDEFGHIJKLMNOPQRSTUVWXYZ         ALL     Xbox One     PS4     360     PS3     WiiU     Wii     PC     3DS     DS     PS Vita     PSP     iOS     Android


Reports on Sony server security lack accuracy (Update)


2:20 PM on 05.05.2011
Reports on Sony server security lack accuracy (Update) photo



Sony responded to the questions from the U.S. House of Representatives' Subcommittee on Commerce, Manufacturing and Trade with an open letter yesterday. But Dr. Gene Spafford, professor at the department of Computer Science at Purdue University, noted something interesting when speaking at the hearing.

Apparently, the Apache Web server software that Sony used was an outdated version and it also didn't have a firewall installed. Oooops.

Even better, that issue seems to have been "reported in an open forum monitored by Sony employees" about 2-3 months before the Anonymous attacks and subsequent other hacks happened. I think it's safe to say that if Anonymous knew about this, its attacks would've been more successful.

Actually, page 7 of this PDF that was inaccessible at the time of writing (maybe it hated foreigners) only said:

"Presumably, both companies are large enough that they could have afforded to spend an appropriate amount on security and privacy protections of their data; I have no information about what protections they had in place, although some news reports indicate that Sony was running software that was badly out of date, and had been warned about that risk."

Awesome. Thanks to the commenters for pointing out my failing though! It was deserved and I love you all. Community member KwikPwn also found the YouTube video of the hearing (the official webcast still gives 404 error) that shows Dr. Stafford's comments on the outdated Apache software and the lack of a firewall. Take a look for yourself!

Sony Was Using Outdated Software Prior to PSN Breach [GamePro] [Image]






Comments not appearing? Anti-virus apps like Avast or some browser extensions can cause this.
Easy fix: Add   [*].disqus.com   to your software's white list. Tada! Happy comments time again.

Did you know? You can now get daily or weekly email notifications when humans reply to your comments.






Hacking

3:45 PM on 02.25.2015
There's already a workaround to skirt Pokémon Shuffle's microtransactions

Pokémon Shuffle isn't Nintendo's initial foray into the seedy underworld of free-to-play with microtransactions. Rusty's Real Deal Baseball did it first, but Shuffle is the first example that drew ire fr...more



9:30 PM on 02.07.2015
Troll gone wrong: Suspected swatter arrested

Have you ever heard the saying, just because you can doesn't mean you should? Well, apparently this guy didn't. A Las Vegas "man" has been arrested after authorities alleged Brandon Willson, 19, made up a murder in order to g...more



11:00 AM on 01.18.2015
Here's the latest way to region unlock your 3DS

Last November, Nintendo talked a little about rethinking their policies of region locking. Seems like common sense to me. The gains they'd make in consumer goodwill by allowing a few games to more easily make it overseas wou...more



View all Hacking






Back to Top




All content is yours to recycle through our Creative Commons License permitting non-commercial sharing requiring attribution. Our communities are obsessed with videoGames, movies, anime, and toys.

Living the dream since March 16, 2006

Advertising on destructoid is available: Please contact them to learn more