By using this site, you agree to our Privacy Policy and our Terms of Use. Close

Forums - Sony - And we are back to Square 1 as Sony implicates Anonymous to US House Probe

Ajescent on 04 May 2011
o_O.Q said:

"Their security was broken by a known security vulernability they weren't aware of."

o_O... yup... that makes a lot of sense



A hole that everyone except Sony knows about.



PS One/2/p/3slim/Vita owner. I survived the Apocalyps3/Collaps3 and all I got was this lousy signature.


Xbox One: What are you doing Dave?

Around the Network
theprof00 on 04 May 2011
NJ5 said:

Wait, people actually believe that "Anonymous" can be blamed for anything? Wow...

It's an idea, not a real organization. Anyone can claim to be "Anonymous".

PS: Anonymous was responsible for this post.

The thing that the noobs are getting tricked by is that there is a self-appointed "leadership", but thinking of them as actual leadership is about as foolish as taking anyone on their flagship site 4chan seriously. ie; Anon "leadership" is just another Anonymous troll



Rath on 04 May 2011
o_O.Q said:

"Their security was broken by a known security vulernability they weren't aware of."

o_O... yup... that makes a lot of sense


The security flaw was known (as in it had been found by others and was publicly available), but Sony wasn't aware of it. It makes perfect sense.



Ail on 04 May 2011
Kasz216 said:
Ail said:
Vetteman94 said:
Ail said:
thranx said:
 


No i dont agree. I have yet to see sony supporters reconcile the fact that sony did not keep their server software up to date which is a basic security task.

You know the only information we have concerning that is a guy reporting they were running an old version of Apache.

That version while not being up todate had no known security hole...

I thought that it did have a known vulnerability that was fixed on the later versions

This is the list of apache vulnerabilities :

http://httpd.apache.org/security/vulnerabilities_22.html

Supposedly sony was running  2.2.15.

The only vulnerabilities listed related to DoS, not breaching the machine...


According to sony... themselves.  Their security was broken by a known security vulernability they weren't aware of.


Well the page I linked list all known apache vulnerabilities that have been fixed in any patch...

So if it's a known vulnerability  that isn't listed there it means it exist on the latest version of apache too. hence reproaching them to use an older patch doesn't achieve much..



PS3-Xbox360 gap : 1.5 millions and going up in PS3 favor !

PS3-Wii gap : 20 millions and going down !

fordy on 04 May 2011
Ail said:
Vetteman94 said:
Ail said:
thranx said:
LivingMetal said:
thranx said:
LivingMetal said:
thranx said:
M.U.G.E.N said:
Vetteman94 said:
Galaki said:
Apparently, the firm is claiming Anonymous were responsible for the attack, as a file named Anonymous was found on one of Sony’s servers with the words “We are Legion” attached to it.

Really? You can pin the blame with a text file? :)


Sure why not

yep and with those assholes recent history, evidence are 'against' them.

and I don't think they said they were responsible tho right? I think they just said a file was left by the hackers with that name.

honest to god if I see one more guy defending hackers I'm gonna lose it!

or not but yea you get the point

Not all hackers are evil. Perhaps if people would stop trying to piant every hacker as wrong/evil others would not have to defend hackers that are not doing anything wrong.


Perhaps some users here should stop bashing Sony at most every turn just because the PS3 is not their system of choice.  Therefore, others would not have to defend Sony that are not doing anything wrong.


I am not talking about defending Sony, that is fine. He was talking about hackers. Perhaps you guys would defend sony better by putting forth good arguments as to why they are right in this situation istead of the "la la la defence its all the hackers faults they are evil."


A lot of us have put out good arguments in favor of Sony.  But the Sony haters will always hate, never agree.  Do you agree?


No i dont agree. I have yet to see sony supporters reconcile the fact that sony did not keep their server software up to date which is a basic security task.

You know the only information we have concerning that is a guy reporting they were running an old version of Apache.

That version while not being up todate had no known security hole...

I thought that it did have a known vulnerability that was fixed on the later versions

This is the list of apache vulnerabilities :

http://httpd.apache.org/security/vulnerabilities_22.html

Supposedly sony was running  2.2.15.

The only vulnerabilities listed related to DoS, not breaching the machine...


Actually, you'd see in 2.2.17 (released last October) showed an overhaul of the authentication/authorization module.

It has already been confirmed that the breach used was one that was fixed by Apache several months ago.



Around the Network
Ail on 04 May 2011
Kasz216 said:
Ail said:
Vetteman94 said:
Ail said:
thranx said:
 


No i dont agree. I have yet to see sony supporters reconcile the fact that sony did not keep their server software up to date which is a basic security task.

You know the only information we have concerning that is a guy reporting they were running an old version of Apache.

That version while not being up todate had no known security hole...

I thought that it did have a known vulnerability that was fixed on the later versions

This is the list of apache vulnerabilities :

http://httpd.apache.org/security/vulnerabilities_22.html

Supposedly sony was running  2.2.15.

The only vulnerabilities listed related to DoS, not breaching the machine...


According to sony... themselves.  Their security was broken by a known security vulernability they weren't aware of.


Can you point me toward where Sony gave details about how the breach happened ? I would like to know more about that...



PS3-Xbox360 gap : 1.5 millions and going up in PS3 favor !

PS3-Wii gap : 20 millions and going down !

Icyedge on 04 May 2011
thranx said:
M.U.G.E.N said:
thranx said:
M.U.G.E.N said:
Vetteman94 said:
Galaki said:
Apparently, the firm is claiming Anonymous were responsible for the attack, as a file named Anonymous was found on one of Sony’s servers with the words “We are Legion” attached to it.

Really? You can pin the blame with a text file? :)


Sure why not

yep and with those assholes recent history, evidence are 'against' them.

and I don't think they said they were responsible tho right? I think they just said a file was left by the hackers with that name.

honest to god if I see one more guy defending hackers I'm gonna lose it!

or not but yea you get the point

Not all hackers are evil. Perhaps if people would stop trying to piant every hacker as wrong/evil others would not have to defend hackers that are not doing anything wrong.


oh I'm sure they are not all evil....but I never said that and it's not what I meant either obviously. I'm referring to the scum who were supposed to be fighting the good fight for the sake all of 'us'.


Anonymous? PLacing blame on them based soley on a text file that anyone could have created?

Anonymous is anyone.



fordy on 04 May 2011
LivingMetal said:
thranx said:
kitler53 said:
Galaki said:
kitler53 said:
Galaki said:
Apparently, the firm is claiming Anonymous were responsible for the attack, as a file named Anonymous was found on one of Sony’s servers with the words “We are Legion” attached to it.

Really? You can pin the blame with a text file? :)


Really?  You can santify them from blame just because one guy said it wasn't them?

Anon is loose nit group with no leader or structure.  just because the guy who did the youtube video didn't do the hack doesn't mean the guy who did the hack didn't do it because in support of anon.  frankly there is no way to for even anon to know if anon did it at this point.

yes, the hacker could have left that file to frame anon.  but also yes, it could have been someone who believes they are anon.

I am not saying it can't be anon. I am just saying, that's a flimsy piece of evidence.

gotcha, well i can agree with that.  but we all know sony would love to have this pinned on anon so if it is the only evidence it will be the evidence they produce.

i wonder if any laws will be added/changed based off of this.  hackers that were upset about not being able to hack the ps3 just may find themselves a lot worse off becase of this if congress decides to change laws to protect big buisiness.


Not sure but I thought I saw an article that Austriala was going to be changing some of its security laws. Congress should be concerned about protecting consumers not Corporations. But i would not be suprised if that is the route they go.


Corporations are run by people.  Corporations hire people.  Those people are consumers.  As business thrives, the people who work for those corporations have a lively hood that allows them to be consumers.  Let's not use your false assumption as an excuse to side against Sony again.


BP hires people too. Should they have not been dealt with as severely? the laws are there to protect the people, right?



fordy on 04 May 2011
theprof00 said:
ssj12 said:
theprof00 said:

God, you know guys, if you have absolutely no idea what you're talking about and are simply relying on logic to make the points you believe in, please don't bother posting.

This is directed to all those people that think anonymous is an entity. Anonymous IS ANONYMOUS. GET IT? They have no list of members. They have no centralized membership. They have no culpability. Just because someone arbitrarily appointed themselves as "leader of anonymous" it doesn't mean they have any power, nor any leadership or followers. I know for a fact that they don't. And if you don't understand that principle, then please stop making yourselves, and us, look bad.

It's like the privateers of old. They are pirates who act under a code, and have allegiance toward a cause.... but nobody knows what they're doing. They are out and about, and nobody knows who they are.


I always forget to mention the similarity between Anon and Privateers. Glad someone mentioned it.

Well, thank you.

I just want to make it clear. I think Sony fucked up. Not for going after pirates and hackers, but for being complete noobs about it. i've lost a lot of respect for them. (Still, though ps3 has without question the BEST games this gen, save for the DS) 

I just don't understand this whole "Sony is lying" thing. Sony fucks things up enough that we don't need haters coming in and denouncing every little thing. 

Seriously, WHY in the world would Sony lie? The CIA and Homeland Security are investigating the matter. Do you REALLY believe they would lie to congress about something that the guys that found bin laden are investigating??!?!

Seriously>?

OCCAM'S RAZOR, dude. Look it up.

I'm agreeing with you on this one. I believe Sony here. I don't see Sony planting a fake document to frame anonymous. They want the truth about this as much as we do, not to pin the blame and know it's fake.

However, I also believe anonymous. The organisation has rogue members who act in their own way, not realising the true consequences of their actions, more of a "my team won" stance.

There are also other possibilities. An independent hacker could have planted it, knowing the public outcry of Anonymous, they figured that Anonymous would make the perfect scapegoat. Either way, I'd say a text file is pretty unstable evidence. It could have been placed there by anyone, even ones not affiliated with Sony or Anonymous.



Kasz216 on 04 May 2011
Ajescent said:
o_O.Q said:

"Their security was broken by a known security vulernability they weren't aware of."

o_O... yup... that makes a lot of sense



A hole that everyone except Sony knows about.

Which is why people saw them as negligent... i'm sure they weren't the ONLY company to not know though.  However there was no excuse for not knowing.