Quantcast
Reports on Sony server security lack accuracy (Update) - Destructoid

DestructoidJapanatorTomopopFlixist



Reports on Sony server security lack accuracy (Update)


2:20 PM on 05.05.2011
Reports on Sony server security lack accuracy (Update) photo



Sony responded to the questions from the U.S. House of Representatives' Subcommittee on Commerce, Manufacturing and Trade with an open letter yesterday. But Dr. Gene Spafford, professor at the department of Computer Science at Purdue University, noted something interesting when speaking at the hearing.

Apparently, the Apache Web server software that Sony used was an outdated version and it also didn't have a firewall installed. Oooops.

Even better, that issue seems to have been "reported in an open forum monitored by Sony employees" about 2-3 months before the Anonymous attacks and subsequent other hacks happened. I think it's safe to say that if Anonymous knew about this, its attacks would've been more successful.

Actually, page 7 of this PDF that was inaccessible at the time of writing (maybe it hated foreigners) only said:

"Presumably, both companies are large enough that they could have afforded to spend an appropriate amount on security and privacy protections of their data; I have no information about what protections they had in place, although some news reports indicate that Sony was running software that was badly out of date, and had been warned about that risk."

Awesome. Thanks to the commenters for pointing out my failing though! It was deserved and I love you all. Community member KwikPwn also found the YouTube video of the hearing (the official webcast still gives 404 error) that shows Dr. Stafford's comments on the outdated Apache software and the lack of a firewall. Take a look for yourself!

Sony Was Using Outdated Software Prior to PSN Breach [GamePro] [Image]






Comments not appearing? Anti-virus apps like Avast or some browser extensions can cause this.
Easy fix: Add   [*].disqus.com   to your software's white list. Tada! Happy comments time again.

Did you know? You can now get daily or weekly email notifications when humans reply to your comments.







Win your choice of console from Destructoid! in Destructoid's Hangs on LockerDome

Hacking

3:00 PM on 06.30.2014
The Art of Watch Dogs nails the modern cyberpunk aesthetic

For all the controversy over its graphical quality, Ubisoft's Watch Dogs had a compelling open-world version of Chicago to explore. As Chris Carter pointed out in his review, the visuals rarely meet the quality set by GTA V b...more



4:15 PM on 05.14.2014
DayZ developer's servers hacked, source code possibly stolen

Rely on Horror spotted a thread on game hacking forum Unknown Cheats which suggests user DevDomo gained access to developer Bohemia's servers. DevDomo's proof came in the form of some images which are alleged source code file...more



11:00 AM on 04.23.2014
Seven things I loved about playing Watch Dogs

The delay of Ubisoft Montreal's new open world IP, Watch Dogs, surprised many. With only a month away from launch, and a rather bold marketing push for the holiday season, Ubisoft appeared ready, but then we found it wasn't. ...more



View all Hacking






Back to Top




All content is yours to recycle through our Creative Commons License permitting non-commercial sharing requiring attribution. Our communities are obsessed with videoGames, movies, anime, and toys.

Living the dream since March 16, 2006

Advertising on destructoid is available: Please contact them to learn more