• PS3 Hacks, PSN , 18.05.2011

    President and CEO of Sony Sir Howard Stringer, has hit back at claims that they were to slow in informing users of the breech, stating

    Most of these breaches go unreported by companies. Forty-three percent (of companies) notify victims within a month. We reported in a week. You’re telling me my week wasn’t fast enough?

    he also said that Kazuo Hirai’s position as CEO of Sony Computer Entertainment is safe, here is a short quote from the source:

    “This was an unprecedented situation,” Stringer told reporters on Tuesday, speaking publicly for the first time since the April breach.

    “Most of these breaches go unreported by companies. Forty-three percent (of companies) notify victims within a month. We reported in a week. You’re telling me my week wasn’t fast enough?”

    The attack, considered the biggest in Internet history, prompted the Japanese electronics giant to shut down its PlayStation Network and other services for close to a month.

    Critics slammed the company for waiting up to a week before telling its customers of the attack and the possible theft of credit card information, prompting lawmakers and state attorneys general to launch investigations.

    Two members of the U.S. House of Representatives sent a letter to Sony on Tuesday, urging it to respond to questions about its security strategy and reveal more details about the data breach.

    In the letter, Representatives Mary Bono Mack of California and G.K. Butterfield of North Carolina said they had contacted Sony on April 29 but all of their questions had not been answered by the company. The lawmakers asked Sony to respond to questions by May 25.

    Sony said it expected to face monetary charges from the break-in but was still assessing the damage.

    “There’s a charge for the system being down … a charge for identity theft insurance,” Stringer said. “The charges mount up, but they don’t add up to a number we can quantify just yet.”

    One expert estimated that costs from the break-in could reach as high as $2 billion.

    To read the full article, visit the source here.

    Tags: , ,

    Discuss in Forums (16)


  • 16 Comments

    1. projectorfreak
      05-18-2011
      09:05 AM
      1

      Sounds like he is in my shop, just another tool

    2. japsander
      05-18-2011
      09:09 AM
      2

      how would they know most go "unreported"?
      how many times have THEY not reported?

      the only reason they reported this time was the fact that 70+ million details is quite a large number to hide away and forget about

    3. bigo93
      05-18-2011
      09:26 AM
      3

      I think this may be a wake up call to not only the Us congress but the world governments! If 43% of companies do not report data leaks, then arent they breaking the law, well of course they dont want to be fined and hence keep it quiet if they can. I think congress will be having a radical rethink in teh ways personal data is kept and regarding companies covering up leaks.

      lmao at the guy asking "Is my week not good enough" it s like he saying that he did everything possible when in fact sony hide whilst trying to come up with a suitable exit strategy and push the blame onto anonymous.

    4. BobbyBlunt
      05-18-2011
      09:52 AM
      4

      Sadly Sony didn't fix much. I have been loyal to the PS brand for 14-15 years. There was no question in my mind when I wanted to buy a system what it would be. Well now when I walk into a store I look at other products. Thanks for showing me that 360 wasn't crap Sony Your arrogance will cost you dearly.

    5. GregoryRasputin
      05-18-2011
      10:04 AM
      5

      Originally Posted by BobbyBlunt
      Sadly Sony didn't fix much. I have been loyal to the PS brand for 14-15 years. There was no question in my mind when I wanted to buy a system what it would be. Well now when I walk into a store I look at other products. Thanks for showing me that 360 wasn't crap Sony Your arrogance will cost you dearly.

      I would call myself a Sony fan, i have owned every console since they released the PS1, it isn't the PSN hack that has me angry at them, it isnt the leak of 77+ Million accounts that have annoyed me.

      It is the removal of OtherOS, their Zero support for Home brew development which angers me.

    6. $n!pR
      05-18-2011
      10:25 AM
      6

      Originally Posted by japsander
      how would they know most go "unreported"?
      how many times have THEY not reported?

      the only reason they reported this time was the fact that 70+ million details is quite a large number to hide away and forget about
      They aren't wrong. Most companies keep this kind of stuff internal, do a google search.

      Although 49% of the companies that took part in a survey conducted by RSA Conference said that their primary security concern was data leakage, such as employee or customer information, and 29% of them were in fact confronted with the problem in 2007, only 11% actually reported the incidents.

      "Security professionals need to remain cognizant of the regulations that their organizations must comply with and ensure they are taking steps to properly report the security incidents that are required by law - whatever they may be." said Tim Mather, Chief Security Strategist, RSA Conference. With no reports from the organizations that were affected, it is more and more difficult for both security specialists and legal regulators to take the right measures to reduce online security incidents.

      Aside from data theft, companies showed that they are mostly worried about email-borne malware/phishing (41%), web-borne malware, insider threats/theft (both up to 36%), intellectual property theft (34%) and known software vulnerabilities (24%).
      Here's one that's more recent.

    7. BobbyBlunt
      05-18-2011
      10:34 AM
      7

      Well since he likes making smugg comments and also avoiding other questions lets see if he can answer these.

      1.)Why are your developers networks still not secure?
      2.)Why can hacked PSPs still get online with the same CFW plugin?
      3.)WHY IS OUR INFORMATION STILL SENT OUT AS PLAIN TEXT!!???
      4.)With all of these issues, what can make us sure the information is safe?

      To me it doesn't appear Sony fixed anything.

    8. $n!pR
      05-18-2011
      10:44 AM
      8

      1.)Why are your developers networks still not secure?
      Good question..

      2.)Why can hacked PSPs still get online with the same CFW plugin?
      I think they've given up on securing their PSP.

      3.)WHY IS OUR INFORMATION STILL SENT OUT AS PLAIN TEXT!!???
      It's not.

      4.)With all of these issues, what can make us sure the information is safe?
      I'm pretty sure they've lost enough money from this incident to not want it to happen again.

    9. jordanmoore
      05-18-2011
      10:58 AM
      9

      “Most of these breaches go unreported by companies. Forty-three percent (of companies) notify victims within a month. We reported in a week. You’re telling me my week wasn’t fast enough?”
      I'm saying that your week wasn't fast enough, yes.
      When a potential 70+million accounts are compromised, people should be notified instantly - not just when they're found out.

    10. $n!pR
      05-18-2011
      11:02 AM
      10

      It would take them a week to figure out what happened, so a week is fine and dandy. No company wants to admit they were hacked, especially if they were wrong and would need to retract their statement.

    11. BobbyBlunt
      05-18-2011
      11:04 AM
      11

      Originally Posted by $n!pR
      1.)Why are your developers networks still not secure?
      Good question..

      2.)Why can hacked PSPs still get online with the same CFW plugin?
      I think they've given up on securing their PSP.

      3.)WHY IS OUR INFORMATION STILL SENT OUT AS PLAIN TEXT!!???
      It's not.

      4.)With all of these issues, what can make us sure the information is safe?
      I'm pretty sure they've lost enough money from this incident to not want it to happen again.
      Well your answer for question 3 would be the typical Sony answer, but to anyone that knows how to use a packet/network analyzer run it and log in

    12. Amendment01
      05-18-2011
      11:17 AM
      12

      Originally Posted by japsander
      how would they know most go "unreported"?
      how many times have THEY not reported?
      Exactly what I was thinking... Remember that arcticle on here back in February this year? something about our info breached and sony never had said anything... I'll have to find the link,

      "You’re telling me my week wasn’t fast enough?"

      Someone should have thrown a shoe at this guy!

    13. Lethalarmor
      05-18-2011
      03:49 PM
      13

      Maybe if it happens to one person I understand not reporting for a month... But when your ENTIRE NETWORK IS COMPROMISED there is NO excuse not to notify people as soon as you find out.

      And no Sony, your 'apology gifts' don't make everything alright.

      By the way, how he responded wasn't very acceptable, it just goes to show how little he cares about what happened, he just wants to get paid. The only reason they're fixing it is because they want more money from customers. Anyone who thinks Sony is giving things away out of kindness and trying to make things right is delusional.

    14. Amendment01
      05-18-2011
      06:09 PM
      14

      BTW... That article i was speaking of was wrote up by
      GregoryRasputin on 02-17-2011...


      The Link....

      http://www.ps3hax.net/2011/02/call-o...ation-network/

      This was February mind you, Amidst all the legal battle with geohot...
      I don't think for a second that Sony 'missed' this tidbit.
      More like... They didn't feel they had to inform anybody on what was happening, because they didn't want blow their cover on their spy operation!

    15. bobbintb
      05-18-2011
      08:55 PM
      15

      You’re telling me my week wasn’t fast enough?
      Yes. That's exactly what we're saying.

    16. zeveroth
      05-19-2011
      07:37 AM
      16

      That guy looks like McCain when he lost the election. I bet after all that the guy went home and cried to his wife about how much everyone picks on him. Poor guy gonna kill himself before this is all over. I mean seriously, look at him.