[ x ] remove ads and scale site to 1080p+
[ x ] remove the ads & get mobile premium
pay whatever you want to upgrade
 
 

Reports on Sony server security lack accuracy (Update)

2:20 PM on 05.05.2011·  2 minute read   ·  Maurice Tan
0

Sony responded to the questions from the U.S. House of Representatives' Subcommittee on Commerce, Manufacturing and Trade with an open letter yesterday. But Dr. Gene Spafford, professor at the department of Computer Science at Purdue University, noted something interesting when speaking at the hearing.

Apparently, the Apache Web server software that Sony used was an outdated version and it also didn't have a firewall installed. Oooops.

Even better, that issue seems to have been "reported in an open forum monitored by Sony employees" about 2-3 months before the Anonymous attacks and subsequent other hacks happened. I think it's safe to say that if Anonymous knew about this, its attacks would've been more successful.

Actually, page 7 of this PDF that was inaccessible at the time of writing (maybe it hated foreigners) only said:

"Presumably, both companies are large enough that they could have afforded to spend an appropriate amount on security and privacy protections of their data; I have no information about what protections they had in place, although some news reports indicate that Sony was running software that was badly out of date, and had been warned about that risk."

Awesome. Thanks to the commenters for pointing out my failing though! It was deserved and I love you all. Community member KwikPwn also found the YouTube video of the hearing (the official webcast still gives 404 error) that shows Dr. Stafford's comments on the outdated Apache software and the lack of a firewall. Take a look for yourself!

Sony Was Using Outdated Software Prior to PSN Breach [GamePro] [Image]

 
 

Enlighten an uninformed cougar: FacebookTwitterRedditEmail
 

#Hacking #PSN #Sony #WHAAAAAAT?
 
 
 
[x] advertisement
 
 


Maurice Tan // Profile & Disclosures
Fronts687Blogs 7Following87Followers204

Join IRC! Don't know how? Click or on the banner above! Hai! You may know me as Professor Pew in older times. If you see a cblog here from beyond September 2010 or something: that's from the c... more
Trending on Destructoid:

 
 


Dtoid is fighting adblockalypse without native ad article bullsh* thanks to Huge Members. Please give them sex or donuts:

sni tt
sni tt


Since 9:40 AM on 02.19.2016

KIHP
KIHP


Since 8:18 PM on 03.19.2009

Tornd
Tornd


Since 3:47 PM on 01.04.2013

John B
John B


Since 1:15 AM on 11.26.2006

 

Please login (or) make a quick account (free)
to view and post comments.





Three day old threads are only visible to verified humans - this helps our small community management team stay on top of spam

Sorry for the extra step!