By using this site, you agree to our Privacy Policy and our Terms of Use. Close

Forums - Sony Discussion - Sony Pictures Hacked, Over 1 Million Accounts Stolen

Sony can't catch a break these days, it seems. After the PSN hack, now Sony Pictures has been hacked by a group calling itself LulzSec:

 



. /$$                 /$$            /$$$$$$                     
.| $$                | $$           /$$__  $$                    
.| $$       /$$   /$$| $$ /$$$$$$$$| $$  __/  /$$$$$$   /$$$$$$$
.| $$      | $$  | $$| $$|____ /$$/|  $$$$$$  /$$__  $$ /$$_____/
.| $$      | $$  | $$| $$   /$$$$/  ____  $$| $$$$$$$$| $$      
.| $$      | $$  | $$| $$  /$$__/   /$$  $$| $$_____/| $$      
.| $$$$$$$$|  $$$$$$/| $$ /$$$$$$$$|  $$$$$$/|  $$$$$$$|  $$$$$$.$
.|________/ ______/ |__/|________/ ______/  _______/ _______/
                          //Laughing at your security since 2011!

.--    .-""-.
.   ) (     )
.  (   )   (
.     /     )
.    (_    _)                     0_,-.__
.      (_  )_                     |_.-._/
.       (    )                    |lulz..    
.        (__)                     |__--_/           
.     |''   ``                   |
.     | [Lulz]                   |      /b/
.     |           ,,,---===?A`  |  ,==y'
.   ___,,,,,---==""        |M] | ;| |>
.           _   _      ___,|H,,---==""""bno,
.    o  O  (_) (_)   /          _     AWAW/
.                     /         _( )_  dMM/
.      @_,,,,,,---=="         |//  MW/
.--''''"                         ===  d/
.                                    //   SET SAIL FOR FAIL!
.                                    ,'_________________________
.                               ,/~~~~~~~~~~~~~~~~~~~~~~~~~~~
.                         _____    ,'  ~~~   .-""-.~~~~~~  .-""-.
.      .-""-.           ///==---   /`-._ ..-'      -.__..-'
.            `-.__..-' ===== V/  .---.
.                     ~~~~~~~~~~~~, _',--/_.  .-""-.
.                            .-""-.___` --  |         -.__..-
        

Greetings folks. We're LulzSec, and welcome to Sownage. Enclosed you will
find various collections of data stolen from internal Sony networks and websites,
all of which we accessed easily and without the need for outside support or money.

We recently broke into SonyPictures.com and compromised over 1,000,000 users'
personal information, including passwords, email addresses, home addresses,
dates of birth, and all Sony opt-in data associated with their accounts.
Among other things, we also compromised all admin details of Sony Pictures
(including passwords) along with 75,000 "music codes" and 3.5 million "music coupons".

Due to a lack of resource on our part (The Lulz Boat needs additional funding!)
we were unable to fully copy all of this information, however we have samples
for you in our files to prove its authenticity. In theory we could have taken
every last bit of information, but it would have taken several more weeks.

Our goal here is not to come across as master hackers, hence what we're about
to reveal: SonyPictures.com was owned by a very simple SQL injection, one of
the most primitive and common vulnerabilities, as we should all know by now.
From a single injection, we accessed EVERYTHING. Why do you put such faith in
a company that allows itself to become open to these simple attacks?

What's worse is that every bit of data we took wasn't encrypted. Sony stored
over 1,000,000 passwords of its customers in plaintext, which means it's just
a matter of taking it. This is disgraceful and insecure: they were asking for it.

This is an embarrassment to Sony; the SQLi link is provided in our file contents,
and we invite anyone with the balls to check for themselves that what we say
is true. You may even want to plunder those 3.5 million coupons while you can.

Included in our collection are databases from Sony BMG Belgium & Netherlands.
These also contain varied assortments of Sony user and staffer information.

Follow our sexy asses on twitter to hear about our upcoming website. Ciao! ^_^

 

Mod Edit: I took out the link because I feel that it's an invasion of privacy. It's bad enough that it happened in the first place.



"Well certainly with the Xbox 360, we had some challenges at the launch. Once we identified that we took control of it. We wanted to do it right by our customers. Our customers are very important to us." -Larry "Major Nelson" Hryb (10/2013). Note: RRoD was fixed with the Jasper-revision 3 years after the launch of 360

"People don't pay attention to a lot of the details."-Yusuf Mehdi explaining why Xbone DRM scheme would succeed

"Fortunately we have a product for people who aren't able to get some form of connectivity; it's called Xbox 360,”-Don Mattrick

"The region locking of the 3DS wasn't done for profits on games"-MDMAlliance

Around the Network

## Sony_Pictures_International_AUTOTRADER_USERS.txt ## -- In this file you will find just under 12,500 customers of Sony; this includes dates of birth, addresses, emails, full names, passwords, user IDs, and personal phone numbers.

Wow...



Sig thanks to Saber! :D 

this was their "big" plan



Sony pictures has user accounts for the public? what for? 



Most underwhelming hack ever?



Around the Network

...



"set sail for fail"

nice phrase :)



Aprisaiden said:

Sony pictures has user accounts for the public? what for? 



I can only think of stuff like a club. when they send emails to you about new products... kinda like how i still get emails about every cd a record label is comming out with since i bought a cd off their market one time. Sometimes I get coupons and special deal updates.... i doubt those websites would have any better security.

http://www.sonypictures.com/getupdates/

only place i can find that you can register on their website. and just as i thought it would be



lol



If someone starts a public petition against all these hack attacks then I'll join and get many more to do so.