Thursday, June 02, 2011

LulzSec Hacks SONY Network (SonyPictures.com) Again

LulzSec Hacks SONY http://snapvoip.blogspot.com/
Looks like Sony is not getting a break from hackers. I am sure now the up nosed company must be thinking we should not have banned installing Linux on Playstation 3's. Sony failed to understand, that once you sell the box, that it should limit heavy handed control of what users do with it, withing legal limits. Installing Linux on it should have been users wish, not Sony's law. In any case how many do go around hacking their boxes? If they have acted properly, I doubt they would have received the moniker, Sony Bully. My teachers always told me that most bullies are very insecure. Now I guess Sony is a bully.

SonyPictures.com and It compromised over 1,000,000 users'personal information, including passwords, email addresses, home addresses,dates of birth, and all Sony opt-in data associated with their accounts. I thought after what happened with other Sony networks, it would have learned a lesson and tightened the network security. According to a statement by LulzSec, it was not that hard to break into and they have posted data on a few places on the net.

Message By Lulzsec:

Our goal here is not to come across as master hackers, hence what we're about to reveal: SonyPictures.com was owned by a very simple SQL injection, one of the most primitive and common vulnerabilities, as we should all know by now. From a single injection, we accessed EVERYTHING. Why do you put such faith in a company that allows itself to become open to these simple attacks?What's worse is that every bit of data we took wasn't encrypted. Sony stored over 1,000,000 passwords of its customers in plaintext, which means it's just a matter of taking it. This is disgraceful and insecure: they were asking for it.

0 comments:

Blog Widget by LinkWithin