![]() ![]() The way around this is that hackers can modify the information that is sent and received by the PlayStation 3, thus they could not only get themselves unbanned, they could in theory, cause innocent users to get a ban. "A post on the SKFU blog states that bans are currently based just on user accounts and the PlayStation 3 console IDs. ![]() Sony was forewarned a couple of months ago when they started banning modded consoles and people figured out there was a very easy way to turn the process back on Sony and ban virtually anybody. They effectively painted a big sign on their back reading "Kick Me" and the folks at HBGary Federal learned how well that approach works. Given that the probable root cause is that they tried to shut the barn door after the code-signing keys got out and ticked off a bunch of people by lawsuitting GeoHot, I'm not sure the correct people learned anything or are doing much right. ![]() Hats off to them - they're doing all the right things, and communicating regularly with their client community as they do it ! I feel for them, given the length of the outage though. ![]() Given that we're a number of days in, I hope that they are working on later phases of Eradication, making sure that the original attack vector is taken care of so that once they bring the service back online they won't see a recurrance of the event. Reading between the lines, they seem to be following the methodology for Incident Response, commonly phrased in these steps that I learned in SEC504: Sony is still working on bringing them back online. Sony is communicating regularly on this - you can find their original and current updates here: The Sony PlayStation Network and Qriocity service have been down since Wednesday the 20th. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |