Quantcast
Reports on Sony server security lack accuracy (Update) - Destructoid




Game database:   #ABCDEFGHIJKLMNOPQRSTUVWXYZ         ALL     Xbox One     PS4     360     PS3     WiiU     Wii     PC     3DS     DS     PS Vita     PSP     iOS     Android


Reports on Sony server security lack accuracy (Update)


2:20 PM on 05.05.2011
Reports on Sony server security lack accuracy (Update) photo



Sony responded to the questions from the U.S. House of Representatives' Subcommittee on Commerce, Manufacturing and Trade with an open letter yesterday. But Dr. Gene Spafford, professor at the department of Computer Science at Purdue University, noted something interesting when speaking at the hearing.

Apparently, the Apache Web server software that Sony used was an outdated version and it also didn't have a firewall installed. Oooops.

Even better, that issue seems to have been "reported in an open forum monitored by Sony employees" about 2-3 months before the Anonymous attacks and subsequent other hacks happened. I think it's safe to say that if Anonymous knew about this, its attacks would've been more successful.

Actually, page 7 of this PDF that was inaccessible at the time of writing (maybe it hated foreigners) only said:

"Presumably, both companies are large enough that they could have afforded to spend an appropriate amount on security and privacy protections of their data; I have no information about what protections they had in place, although some news reports indicate that Sony was running software that was badly out of date, and had been warned about that risk."

Awesome. Thanks to the commenters for pointing out my failing though! It was deserved and I love you all. Community member KwikPwn also found the YouTube video of the hearing (the official webcast still gives 404 error) that shows Dr. Stafford's comments on the outdated Apache software and the lack of a firewall. Take a look for yourself!

Sony Was Using Outdated Software Prior to PSN Breach [GamePro] [Image]






Comments not appearing? Anti-virus apps like Avast or some browser extensions can cause this.
Easy fix: Add   [*].disqus.com   to your software's white list. Tada! Happy comments time again.

Did you know? You can now get daily or weekly email notifications when humans reply to your comments.






Hacking

10:50 AM on 08.24.2014
DDoS attack on Sony servers?

[Update: Sony has issued an update on the outage: "Network update: our engineers are aware of the issues and are working to resolve them. We'll keep you posted - sorry for the inconvenience."] Earlier today, PlayStation users...more



8:00 PM on 08.11.2014
Even Zelda: Ocarina of Time is better with Waluigi

Thanks to a ROM hack by Russmarrs2, Waluigi is playable in The Legend of Zelda: Ocarina of Time, just as we always wanted. Our collective hopes, dreams, and prayers have been answered. In the wrong hands, such an endeavor co...more



1:45 PM on 07.07.2014
These first Mario Kart 8 hacks are pretty benign

Through a browser exploit, a group has successfully managed to edit Mario Kart 8's memory on the fly, allowing, right now, custom Wii U menu fonts, renamed courses, and the alteration of which music plays when. Watch a demon...more



View all Hacking






Back to Top




All content is yours to recycle through our Creative Commons License permitting non-commercial sharing requiring attribution. Our communities are obsessed with videoGames, movies, anime, and toys.

Living the dream since March 16, 2006

Advertising on destructoid is available: Please contact them to learn more