Quantcast
Reports on Sony server security lack accuracy (Update) - Destructoid




Game database:   #ABCDEFGHIJKLMNOPQRSTUVWXYZ         ALL     Xbox One     PS4     360     PS3     WiiU     Wii     PC     3DS     DS     PS Vita     PSP     iOS     Android


Reports on Sony server security lack accuracy (Update)


2:20 PM on 05.05.2011
Reports on Sony server security lack accuracy (Update) photo



Sony responded to the questions from the U.S. House of Representatives' Subcommittee on Commerce, Manufacturing and Trade with an open letter yesterday. But Dr. Gene Spafford, professor at the department of Computer Science at Purdue University, noted something interesting when speaking at the hearing.

Apparently, the Apache Web server software that Sony used was an outdated version and it also didn't have a firewall installed. Oooops.

Even better, that issue seems to have been "reported in an open forum monitored by Sony employees" about 2-3 months before the Anonymous attacks and subsequent other hacks happened. I think it's safe to say that if Anonymous knew about this, its attacks would've been more successful.

Actually, page 7 of this PDF that was inaccessible at the time of writing (maybe it hated foreigners) only said:

"Presumably, both companies are large enough that they could have afforded to spend an appropriate amount on security and privacy protections of their data; I have no information about what protections they had in place, although some news reports indicate that Sony was running software that was badly out of date, and had been warned about that risk."

Awesome. Thanks to the commenters for pointing out my failing though! It was deserved and I love you all. Community member KwikPwn also found the YouTube video of the hearing (the official webcast still gives 404 error) that shows Dr. Stafford's comments on the outdated Apache software and the lack of a firewall. Take a look for yourself!

Sony Was Using Outdated Software Prior to PSN Breach [GamePro] [Image]






Comments not appearing? Anti-virus apps like Avast or some browser extensions can cause this.
Easy fix: Add   [*].disqus.com   to your software's white list. Tada! Happy comments time again.

Did you know? You can now get daily or weekly email notifications when humans reply to your comments.






Hacking

11:00 AM on 12.25.2014
Report: PSN and Xbox Live down after DDoS attack

I'm currently away from my consoles so I can't confirm this myself, but word on the street is that PSN and Xbox Live are both inaccessible. They've apparently been down off-and-on since last night. Business Insider reports th...more



12:30 PM on 11.09.2014
Old news: The Wii U can play GameCube games

With the GameCube controller adapter for the Wii U coming soon, a lot of people are hoping we'll be getting GameCube games on the Wii U eShop to boot. Getting another crack at some analog trigger-specific games like Super Ma...more



8:00 PM on 08.24.2014
DDoS attackers now tied to Xbox Live outages

Xbox Live users are now reporting intermittent sign-in issues, and the group claiming responsibility for today's PlayStation Network attacks and bomb threat is again taking credit. Microsoft seems to be aware of the...more



View all Hacking






Back to Top




All content is yours to recycle through our Creative Commons License permitting non-commercial sharing requiring attribution. Our communities are obsessed with videoGames, movies, anime, and toys.

Living the dream since March 16, 2006

Advertising on destructoid is available: Please contact them to learn more