PDA

View Full Version : Sony servers were hacked because of 'long outdated' software



Zeus
05-17-2011, 02:47 PM
You can view the page at http://www.maxconsole.net/content.php?45922-Sony-servers-were-hacked-because-of-long-outdated-software

gadget78
05-17-2011, 03:01 PM
are they 'all' updated now ?

danight
05-17-2011, 03:19 PM
Sony continued to use an OLD version of #OpenSSH of which had a known security issue for FIVE YEARS.

Has psn even been online for 5 years??? :confused:

If not that would mean the day they turned on the lights, they where running exploitable software.

ThreeDog
05-17-2011, 03:28 PM
PSN will be five years old - November 11th (Public). It's entirely possible they went live with their test configuration and did not update anything beforehand?

Hamsterman-SWE
05-17-2011, 03:29 PM
Has psn even been online for 5 years??? :confused:

If not that would mean the day they turned on the lights, they where running exploitable software.

I believe they where internal testing the PSN before the release of ps3, Or it was launched for PSP on that time. correct me if i'm wrong.

NoLimitz80
05-17-2011, 03:39 PM
You idiots. It doesn't say Sony had the exploit for 5 years. It says the old software of OpenSSH had the known security issue for 5 years.

CharmedonWB
05-17-2011, 03:47 PM
Has psn even been online for 5 years??? :confused:

If not that would mean the day they turned on the lights, they where running exploitable software.
Why are you always blaming Sony...they try really hard and all you do is criticize...just not fair!

WoIverine
05-17-2011, 04:14 PM
Why are you always blaming Sony...they try really hard and all you do is criticize...just not fair!

http://1.bp.blogspot.com/_P07uaGtMQn4/SxWGXkAj4rI/AAAAAAAACJg/imknCJzEor0/s1600/crying_baby3.jpg

osnoozeo
05-17-2011, 04:28 PM
the whole situation is just sad! and whats worse before u know it, the hackers will start snitching on each other! **** happens i guess, but what the hell do i know...

Rage-X
05-17-2011, 04:51 PM
http://1.bp.blogspot.com/_P07uaGtMQn4/SxWGXkAj4rI/AAAAAAAACJg/imknCJzEor0/s1600/crying_baby3.jpg

Lolled so hard I think I **** my pants.

unwanted
05-17-2011, 05:15 PM
Has psn even been online for 5 years??? :confused:

If not that would mean the day they turned on the lights, they where running exploitable software.

dont forget the PS2 had online gaming or something of sorts... not on the same scale as PS3 is now... but maybe Sony just bodged the PS2 version to work with the PS3...

soulbwoy
05-17-2011, 05:39 PM
http://1.bp.blogspot.com/_P07uaGtMQn4/SxWGXkAj4rI/AAAAAAAACJg/imknCJzEor0/s1600/crying_baby3.jpg

Perfect!!!

danight
05-17-2011, 05:47 PM
dont forget the PS2 had online gaming or something of sorts... not on the same scale as PS3 is now... but maybe Sony just bodged the PS2 version to work with the PS3...

Naw the games i recall used game networks. Not a central sony network unless maybe it was a sony game. Like EA games used EA servers.


Why are you always blaming Sony...they try really hard and all you do is criticize...just not fair!

Im sorry sir. I was merely wondering why sony never updated the software? The network publicly hasn't been online for 5 years yet the software had been exploited over 5 years.
Common sense would be if you wanna buy a copy of windows you wouldn't goto the store looking for windows 95. Even if you buy win 7 first thing you do after install is update everything to its current version.

Just seems odd if this is true and sony never updated.

While i never expect sony to lay out excatly how they got hacked. Id be interested in knowing the basics. 1 day this is gonna make a hell of a movie. Ive been saying that since geohot was rapping about sony. If sony was smart they would hire him and make it, so they could make some money off what has happened. Swordfish is 1 of my all time favorite movies (probably because h berry took her top off though) and it was about hacking sorta.

kneehighspy
05-17-2011, 05:54 PM
Lolled so hard I think I **** my pants.


same here, it fit the situation perfectly, well done :)

msanchez
05-17-2011, 05:57 PM
You idiots. It doesn't say Sony had the exploit for 5 years. It says the old software of OpenSSH had the known security issue for 5 years.

.... really? when they knew about it, or since when they've been running it isn't the issue. The security flaw in the software has been known for 5 YEARS, so whether they've been running it for the 5 years, or just started running it yesterday is of no importance... and you have the testicular fortitude to call other people idiots?



dont forget the PS2 had online gaming or something of sorts... not on the same scale as PS3 is now... but maybe Sony just bodged the PS2 version to work with the PS3...

I heard that they just took a spare file server that Kuturagi had laying around his house and used that... after they deleted all the porn of course.
I heard they just

tech3475
05-17-2011, 06:30 PM
I heard that they just took a spare file server that Kuturagi had laying around his house and used that... after they deleted all the porn of course.
I heard they just

Nah, Nintendo stole it for their servers so Sony had to start over. Unfortunately it designed and managed by the same people behind the master key which is why it failed so badly.

Today I happened to watch an old Dilbert cartoon where the pointy haired boss said the management decided not to upgrade their computers because of short term gains and by the time a disaster occurred they would have left.

I couldn't help but think of Sony for some reason.

Samverner777
05-17-2011, 08:20 PM
mmmm, spam on maxconsole. did they update their software?
just kidding. ;)

kneehighspy
05-17-2011, 08:44 PM
mmmm, spam on maxconsole. did they update their software?
just kidding. ;)


try to get it when we can. spam is like chicken pox, soon as you scratch one, another pops up.

spam, the other pink meat, it's whats for dinner :)

msanchez
05-17-2011, 09:45 PM
mmmm, spam on maxconsole. did they update their software?
just kidding. ;)

There's no spam... everything is A-OK with the forums. We are just testing out new ways to stop spammers, so we allow them in a controlled fashion to post spam.



THAT! is a sony move right there.

winterborn25
05-17-2011, 09:47 PM
thanks for pointing out the obvious again :(

soulbwoy
05-17-2011, 10:24 PM
Whats the deal with these spammers? Do they really think we are gonna see this sh*t and be like: "Wow those are some cool deals I'm gonna go visit this website and get the hookup" ? Are they really convinced that spamming a forum is gonna generate traffic to their site?

msanchez
05-17-2011, 10:57 PM
Whats the deal with these spammers? Do they really think we are gonna see this sh*t and be like: "Wow those are some cool deals I'm gonna go visit this website and get the hookup" ? Are they really convinced that spamming a forum is gonna generate traffic to their site?

Well given the way some people idolize sony... well and to be fair apple, ms and ninty... yeah, I'm willing to bet at least a few mentally challenged posters do go to those sites.

In any case, sorry about the spammers... and thanks to those of you that report them. Makes handling our responsibilities easier. I do hope that we come up with a better way to deal with them cause the first few days it's kinda fun deleting their posts, feels like an arcade game, but there's just so much Donkey Kong you can play before you get bored.

NoLimitz80
05-18-2011, 12:31 AM
Why yes, yes I do. Because they have not been doing online gaming for 5 years jack nuts.


.... really? when they knew about it, or since when they've been running it isn't the issue. The security flaw in the software has been known for 5 YEARS, so whether they've been running it for the 5 years, or just started running it yesterday is of no importance... and you have the testicular fortitude to call other people idiots?




I heard that they just took a spare file server that Kuturagi had laying around his house and used that... after they deleted all the porn of course.
I heard they just

Squirrel61
05-18-2011, 03:02 AM
You idiots. It doesn't say Sony had the exploit for 5 years. It says the old software of OpenSSH had the known security issue for 5 years.

You idiot. If you read well, you would've read that Sony DID use the exploited version. Since PSN probably is online for less that five years, it could be possible that they had the exploit for less than five years. But they had it right from the beginning, until the day they got hacked.

chrisprocter01
05-18-2011, 03:53 AM
Why yes, yes I do. Because they have not been doing online gaming for 5 years jack nuts.

are you retarded?

if sony have been doing PSN less than 5 years

and the software they used for PSN's servers had known security issues for 5 years

that means SONY PUT UP SERVERS ON DAY 1 WITH SOFTWARE THAT WAS OUT OF DATE!!!

what is so hard to understand about that?

its like building a brand new car but fitting tyres to it that are already a year old with worn tread, does that analogy help you understand the point of all this

Sony obviously put up the test version of PSN without updating and left it running like that for 4-5 years

CharmedonWB
05-18-2011, 05:40 AM
http://1.bp.blogspot.com/_P07uaGtMQn4/SxWGXkAj4rI/AAAAAAAACJg/imknCJzEor0/s1600/crying_baby3.jpg
Cute, you're so quick to try and be clever that you apparently are not smart enough to see sarcasm when it screams obvious! FAIL!

CharmedonWB
05-18-2011, 05:43 AM
Naw the games i recall used game networks. Not a central sony network unless maybe it was a sony game. Like EA games used EA servers.



Im sorry sir. I was merely wondering why sony never updated the software? The network publicly hasn't been online for 5 years yet the software had been exploited over 5 years.
Common sense would be if you wanna buy a copy of windows you wouldn't goto the store looking for windows 95. Even if you buy win 7 first thing you do after install is update everything to its current version.

Just seems odd if this is true and sony never updated.

While i never expect sony to lay out excatly how they got hacked. Id be interested in knowing the basics. 1 day this is gonna make a hell of a movie. Ive been saying that since geohot was rapping about sony. If sony was smart they would hire him and make it, so they could make some money off what has happened. Swordfish is 1 of my all time favorite movies (probably because h berry took her top off though) and it was about hacking sorta.


LOL dude don't even sweat it, I was being sarcastic as all get out! Honestly, I thought people would get it and chuckle--figured it was obvious enough but perhaps I give people too much credit.

Asgaro
05-18-2011, 06:39 AM
Why can't spam messages be spelled correctly?!

But I like to read them, it's my laugh of the day:p

hoky
05-18-2011, 07:42 AM
Why can't spam messages be spelled correctly?!

But I like to read them, it's my laugh of the day:p

yeah it's comical, Lets Facelift Bar!

I don't even know what that's supposed to mean

msanchez
05-18-2011, 07:51 AM
Why yes, yes I do. Because they have not been doing online gaming for 5 years jack nuts.

... Oh yes I see your point :rolleyes:

Really are you seriously not understanding the issue? Please tell me your a sony fan, cause if you're not, then I fear for the future of humanity even more.


LOL dude don't even sweat it, I was being sarcastic as all get out! Honestly, I thought people would get it and chuckle--figured it was obvious enough but perhaps I give people too much credit.

To be fair, you know there has to be some sort of indication that sarcasm is being used... we're not blessed with the smartest of posters on these forums. Not that we're all idiots... but there's quite a few.

soulbwoy
05-18-2011, 09:32 AM
Cute, you're so quick to try and be clever that you apparently are not smart enough to see sarcasm when it screams obvious! FAIL!

with sony fanboys its hard to tell if someone is a genuine fanboy or they are being sarcastic. Sony fanboys are known to make ridiculous comments like the one you posted, so it is difficult for readers to detect the sarcasm.

Xenogears V
05-18-2011, 09:44 AM
http://1.bp.blogspot.com/_P07uaGtMQn4/SxWGXkAj4rI/AAAAAAAACJg/imknCJzEor0/s1600/crying_baby3.jpg

Masterpiece.

ThreeDog
05-18-2011, 11:11 AM
Thought I would post here too since this bothers me:

Be cautious of the data protection companies that Sony is teaming up with. Affinion International Limited (http://www.affinioninternational.com/) is allegedly not a trustworthy identity protection company.

Please be careful if you attempt to use their services and do your research first, starting with here http://en.wikipedia.org/wiki/Affinion_Group#Identity_Theft_and_Data_Breach_Prot ection_Businesses


thousands of issues have been reported by consumers for deceptive selling practices, unauthorized charges to consumers' credit cards, and failure to respond or resolve issues. Many of these complaints stem from the charges individuals found on their credit card statements. Consumers are told that it takes 28 days for a charge to be canceled or credited back, and even employees of the credit card company are not able to dispute these charges in the same manner any other charge would be handled.They ended up settling these matters paying out $8 million over 17 US states.

msanchez
05-18-2011, 12:09 PM
TD, sounds like a match made in Heaven (or more likely hell).

ThreeDog
05-18-2011, 12:41 PM
A community moderator has confirmed here: http://www.community.eu.playstation.com/t5/PlayStation-Network/PSN-Outage-and-FAQ-Updated-Tuesday-18th-May/m-p/12854092#M162635 (Moderator Yaster) that Sony has turned off sign-in services for the following sites:


PlayStation.com
PlayStation forums
PlayStation Blog
Qriocity.com
Music Unlimited via the web client
All PlayStation game title websites
And here's the scoop http://www.eurogamer.net/articles/2011-05-18-sonys-psn-password-page-hacked


A new hack is currently doing the rounds in dark corners of the internet that allows the attacker the ability to change your password using only your account’s email and date of birth.

realshompa
05-18-2011, 01:15 PM
Sony web access down again. New exploit found.

http://www.dailytech.com/Sony+PSN+Web+Access+Down+Again+After+New+Exploit+D iscovered/article21674.htm

msanchez
05-18-2011, 01:23 PM
... I really want to make fun of sony, but it's just not even worth it anymore. The level of incompetence oozing from their HQ is simply epic.

Sony = EPIC FAIL!

danight
05-18-2011, 01:45 PM
double post

danight
05-18-2011, 01:46 PM
http://www.youtube.com/watch?v=XZxzJGgox_E&NR=1

beyond belief.... simple amazing!!!

danight
05-18-2011, 01:57 PM
... I really want to make fun of sony, but it's just not even worth it anymore. The level of incompetence oozing from their HQ is simply epic.
Sony = EPIC FAIL!

its getting sad now... the hackers dont even have to hack sony to find out their security is flawed. With the world watching, sonys first attempt to get back on line is failed. No wonder japan wont let sony turn PSN back on in the Japan region.

mallinersha
05-18-2011, 02:04 PM
LOL @ all you PSN guinea pigs.....

ThreeDog
05-18-2011, 03:16 PM
I need a freaking editor :(

iLLNESS
05-18-2011, 04:20 PM
its getting sad now... the hackers dont even have to hack sony to find out their security is flawed. With the world watching, sonys first attempt to get back on line is failed. No wonder japan wont let sony turn PSN back on in the Japan region.

lol no ****. this has got to hurt sony now though. this was their opportunity to make things right and they fucked up. i wonder though, why did they inform people who had their accounts hacked this time so quickly? what was wrong with the week long delay like last time. oh right, everything was wrong with it.

sony is fucked. just give up. everyone has their eyes on you sony. better hire some staff to actually take car of PSN and start charging for the service since its obvious you can't do it the way your doing it now.

WoIverine
05-18-2011, 04:28 PM
Cute, you're so quick to try and be clever that you apparently are not smart enough to see sarcasm when it screams obvious! FAIL!

Sorry man, there's so many SDF members around here, it's hard to tell these days.

unwanted
05-18-2011, 04:48 PM
Sony web access down again. New exploit found.

http://www.dailytech.com/Sony+PSN+Web+Access+Down+Again+After+New+Exploit+D iscovered/article21674.htm

posted similar news in the Submit news section... for some reason it hasnt got to the main page yet...

iLLNESS
05-18-2011, 04:49 PM
posted similar news in the Submit news section... for some reason it hasnt got to the main page yet...

everyone is sleeeepinnngggg

unwanted
05-18-2011, 04:51 PM
everyone is sleeeepinnngggg

so was I... and I posted it ages ago... :D

capitone
05-18-2011, 04:56 PM
same here, it fit the situation perfectly, well done :)

i agree !

^__^

ThreeDog
05-18-2011, 05:14 PM
everyone is sleeeepinnngggg
It's supposed to be my job :p
I'm trying :o

msanchez
05-18-2011, 08:48 PM
Hey my question is... what will they do to the chief of the S.S. ... err I mean chief of security? the guy hasn't been on the job for 3 weeks and he already made a huge sonyup (read f*ckup). Maybe they should split the guys salary between 3 IT guys like they should have done from the beginning.


GET IT THROUGH YOUR THICK HEADS, EXECUTIVES AND LAWYERS ARE NOT THE UNIVERSAL SOLUTION TO ALL THE PROBLEMS. In fact, that's probably sony's biggest problem.

CharmedonWB
05-19-2011, 08:39 AM
Sorry man, there's so many SDF members around here, it's hard to tell these days.

LOL don't worry about it man...that shows me that probably less sarcasm is better =)

capitone
05-22-2011, 04:38 PM
nice laughs thanks to sony !

thanks sony ! i like the jokes !

:cool: