$>
you're reading...
Cybercrime, Datenschutz, Netzwelt

LulzSec compromises Sony online security: #Sownage


Sony taken for a ride on the Lulz Boat

Thursday a little known hactivist group called LulzSecurity (LulzSec) dropped a bombshell on Sony Pictures Entertainment: The group managed to hack SonyPictures.com, compromising the personal information of over 1 million users – including passwords, email addresses, home addresses, and dates of birth.

In a statement released Thursday, LulzSec explains their motive was to expose Sony as being irresponsible and negligent in their handling of user information and network security. From a statement released by LulzSec:

SonyPictures.com was owned by a very simple SQL injection, one of the most primitive and common vulnerabilities…. From a single injection, we accessed EVERYTHING. Why do you put such faith in a company that allows itself to become open to these simple attacks?

What’s worse is that every bit of data we took wasn’t encrypted. Sony stored over 1,000,000 passwords of its customers in plaintext, which means it’s just a matter of taking it. This is disgraceful and insecure: they were asking for it.

This is an embarrassment to Sony…

The origins of LulzSec are mysterious. While there is apparently no direct connection between the international Internet hactivist collective known as Anonymous and LulzSec, there may be some overlap as to individual supporters.

Recently LulzSec has been busy making a name for themselves. Earlier this week the group hacked PBS, placing a false story about dead rapper Tupac being alive in New Zealand. The LulzSec prank was motivated by a PBS story about WikiLeaks that some found misleading.
Examiner

Diskussionen

2 Gedanken zu “LulzSec compromises Sony online security: #Sownage

  1. Wonderful post once again. Thanks a lot;)

    Verfasst von Patrica Umphrey | Juni 30, 2011, 6:29 am
  2. here are the hacked accounts…

    Verfasst von MS | Juni 3, 2011, 10:16 am

Schreibe einen Kommentar

Trage deine Daten unten ein oder klicke ein Icon um dich einzuloggen:

WordPress.com-Logo

Du kommentierst mit Deinem WordPress.com-Konto. Abmelden / Ändern )

Twitter-Bild

Du kommentierst mit Deinem Twitter-Konto. Abmelden / Ändern )

Facebook-Foto

Du kommentierst mit Deinem Facebook-Konto. Abmelden / Ändern )

Google+ Foto

Du kommentierst mit Deinem Google+-Konto. Abmelden / Ändern )

Verbinde mit %s

Member of The Internet Defense League

Kalender

Juni 2011
M D M D F S S
« Mai   Jul »
 12345
6789101112
13141516171819
20212223242526
27282930  

Kategorien

Archiv

Legal Guide For Bloggers

Bloggers' Rights at EFF

Interessantes

Link Anonymizer

Independent Tests of Antiv-Virus Software

BSD Aktuell

Hacker News

Blog Stats

  • 259,868 hits

Haftungsausschluss

disclaimer

%d Bloggern gefällt das: