hellfire99x: (Default)
[personal profile] hellfire99x
I hate to sound a bit like a broken record in my last few entries... but, wow, Sony just won't step out of the limelight.

First, they took away features from the PlayStation 3. Then, when people broke the encryption on the PS3 so they could put OtherOS and other features back in, Sony started filing lawsuits. To make matters a million times worse, they demanded and were given permission by the courts to acquire the IP addresses of every single person who visited the blogs, video logs, Twitter & Facebook accounts, etc., of the people who broke the encryption. Supposedly it was for "jurisdictional" purposes: trying to convince the Judge that the people who cracked the PS3 should be tried in California, where they'd have the home court advantage. Ultimately, they settled out of court.

Then they flaunted it. They bragged about their "victory," and put out a message to the world that they'd sue anybody else who tried to break the encryption of the PS3... and they happened to have a nice, long traffic log of everyone they could refer to later.

So the world responded... and is actually still responding. Sony's PSN was not only DDOSed but also breached, and during that breach SOE silently got nailed as well. A separate Sony site (not sure which) was silently breached, and briefly hosted a phishing site before Sony pulled the plug. Sony's Music store in Greece was breached in the last few days, as well as the Sony Music in Japan using the same exploit. A Sony ISP in Japan was also breached, with virtual money stolen. (The motherland is doubly not pleased, I'm sure.) A Sony site in Canada was also breached, as well as one in Thailand and one in Indonesia. Nearly all of these breaches involved data theft.

I'm sure I'm leaving out a few... I recall reading a tally of 10 or 11 Sony sites in total being breached. The exact number doesn't quite matter, though: the idea is, Sony and their lawyers have quite clearly poked the hornet's nest, and are reaping the terrible consequences of doing so. The fact that users' personal data is caught up in the mix of this whole mess is very, very unfortunate... and could be very costly to fix. They've already admitted that the barebones costs of the PSN breach and outage, not counting any costs related to identity theft protection or related to the lawsuits recently filed against them, will be at minimum $180 million.

If after all of this the costs skyrocket into the billions (I certainly don't think they'll stay in the millions, but I could be wrong)... could we be witnessing the start of Sony's downfall? Who's going to trust them anymore after this? And if someone does still trust their security... who's to say they won't ban you or sue you later on for looking at a certain blog, or watching a certain Youtube video?

Sony, Sony, Sony.

In my opinion, if you've gained any wisdom from this you'll come forth and publicly (humbly) apologize for your previous hardline stances against your own hacker community and try really, really hard to repair what little reputation you have left. You've not only become very hostile towards your own hacker community (the same hackers you yourself invited when the PS3 started shipping), you've also become hostile towards customers in general. That is thoroughly despicable, and perhaps a sign that the only way to truly repair things is to see some executives canned.


hellfire99x: (Default)
R. Draconis

Blog notes

@ Twitter
@ Youtube

This journal is best viewed in Firefox 2.x or better, at 1024x768 or higher resolution. Man, ain't that a blast from the past?!

Feel free to comment on anything you see; I don't bite. :P

Free text is still free.