Democratic Underground Latest Greatest Lobby Journals Search Options Help Login
Google

Security Expert: Sony Knew Its Software Was Obsolete Months Before PSN Breach

Printer-friendly format Printer-friendly format
Printer-friendly format Email this thread to a friend
Printer-friendly format Bookmark this thread
Home » Discuss » DU Groups » Recreation & Sports » Gaming Group Donate to DU
 
steve2470 Donating Member (1000+ posts) Send PM | Profile | Ignore Mon May-09-11 07:12 PM
Original message
Security Expert: Sony Knew Its Software Was Obsolete Months Before PSN Breach
Edited on Mon May-09-11 07:12 PM by steve2470
http://consumerist.com/2011/05/security-expert-sony-knew-its-software-was-obsolete-months-before-psn-breach.html

By Marc Perton on May 4, 2011 12:30 PM

In congressional testimony this morning, Dr. Gene Spafford of Purdue University said that Sony was using outdated software on its servers — and knew about it months in advance of the recent security breaches that allowed hackers to get private information from over 100 million user accounts.

According to Spafford, security experts monitoring open Internet forums learned months ago that Sony was using outdated versions of the Apache Web server software, which "was unpatched and had no firewall installed." The issue was "reported in an open forum monitored by Sony employees" two to three months prior to the recent security breaches, said Spafford.

Spafford made his comments in a hearing convened by the House Subcommittee on Commerce, Manufacturing, and Trade. Sony was invited to participate in the hearing, but declined to attend. In a letter to the committee, Sony said it has added automated software monitoring and enhanced data security and encryption to its systems in the wake of the recent security breaches.

"If Dr. Spafford's assessment is accurate, it's inexcusable that Sony not only ran obsolete software on servers containing confidential data, but also that the company continued to do so after this information was publicly disclosed," said Jeff Fox, Consumer Reports Technology Editor.
Refresh | 0 Recommendations Printer Friendly | Permalink | Reply | Top
Ninjaneer Donating Member (577 posts) Send PM | Profile | Ignore Mon May-09-11 09:04 PM
Response to Original message
1. I wonder if Sony will ever recover from this large a blow. eom
Printer Friendly | Permalink | Reply | Top
 
Occulus Donating Member (1000+ posts) Send PM | Profile | Ignore Tue May-10-11 09:58 AM
Response to Original message
2. This is a really really BAD mistake on the part of Sony
Edited on Tue May-10-11 09:59 AM by Occulus
An unpatched Apache server running behind no firewall?

Jesus. That's, like, baby's-first-network admin stuff.
Printer Friendly | Permalink | Reply | Top
 
ZombieHorde Donating Member (1000+ posts) Send PM | Profile | Ignore Tue May-10-11 06:39 PM
Response to Reply #2
3. "That's, like, baby's-first-network admin stuff."
Funny.
Printer Friendly | Permalink | Reply | Top
 
DU AdBot (1000+ posts) Click to send private message to this author Click to view this author's profile Click to add this author to your buddy list Click to add this author to your Ignore list Fri May 24th 2024, 11:05 AM
Response to Original message
Advertisements [?]
 Top

Home » Discuss » DU Groups » Recreation & Sports » Gaming Group Donate to DU

Powered by DCForum+ Version 1.1 Copyright 1997-2002 DCScripts.com
Software has been extensively modified by the DU administrators

Important Notices: By participating on this discussion board, visitors agree to abide by the rules outlined on our Rules page. Messages posted on the Democratic Underground Discussion Forums are the opinions of the individuals who post them, and do not necessarily represent the opinions of Democratic Underground, LLC.

Home  |  Discussion Forums  |  Journals |  Store  |  Donate

About DU  |  Contact Us  |  Privacy Policy

Got a message for Democratic Underground? Click here to send us a message.

© 2001 - 2011 Democratic Underground, LLC