Sony Finally Admits Leak – “Anonymous Did It!”

sony-psn-logo

Sony has finally confirmed that all 77 million PSN accounts have been leaked to hackers, previously having maintained this was a “possibility,” and has revealed it found a calling card from “Anonymous” on a hacked server.

Previously Sony’s language used lots of weaselly wording, generally admitting only the possibility that leaks occurred or that only some of the accounts had been leaked.

Now it seems Sony is ready to own up to the fact that it has lost all the data entrusted with it – it has finally conceded that all of the data was definitely stolen, something which probably comes as news to nobody.

Just who is responsible for the hacks and what their motives were is not yet clear, but supposedly Sony has found a file titled “anonymous” with the text “we are legion” on a server compromised in the second hack, suggesting that someone wished to implicate a loose-knit rabble of cyber-hooligans in the hack.

Sony also blames a recent DoS attack on “Anonymous,” a rather interesting admission considering SCE CEO Kazuo Hirai’s statement in a recent interview that he was sceptical of “Anonymous” involvement.

Sony claims stolen credit card numbers have not been used:

As of today, the major credit card companies have not reported any fraudulent transactions that they believe are the direct result of this cyber attack.

Some might wonder as to what is meant by a “direct result” in this usage.

Sony has also further detailed the free stuff it is offering to its American victims:

[Our intent is to] to offer complimentary identity theft protection to U.S. account holders and [we] detailed the “Welcome Back” program that includes free downloads, 30 days of free membership in the
PlayStation Plus premium subscription service; 30 days of free service for Music Unlimited subscribers; and extending PlayStation Plus and Music Unlimited subscriptions for the number of days services were unavailable

Sceptics have noted that all of these compensatory offerings require victims to provide or continue providing their details to Sony.

A firm schedule for full restoration of services has still yet to be provided.


    Post Comment »
    234 Comments
    Sort by: Date | Score
    Comment by Anonymous
    18:11 05/05/2011 # ! Quality (+1.0)

    This hack was most likely done by a very powerful organization that wanted to smear anonymous.

    Comment by Anonymous
    19:31 05/05/2011 # ! Quality (+1.0)

    Scientologist hackers?

    Avatar of Gitami
    Comment by Gitami
    00:44 06/05/2011 # ! Quality (+0.8)

    Anti-wikileak hackers?

    Comment by Anonymous
    04:21 06/05/2011 # ! Quality (+1.0)

    I'd have pissed myself laughing if the text comment was "For the Lulz"

    Comment by Anonymous
    05:09 06/05/2011 # ! Neutral (0)

    Damn it I was going to say "For the Lulz"

    Avatar of Myballz
    Comment by Myballz
    07:18 06/05/2011 # ! Neutral (-0.2)

    More likely Pedophiles?

    Comment by Anonymous
    12:34 06/05/2011 # ! Neutral (0)

    This might actually be true. Scientologists have it out for Anonymous, and they do have the resources. O.o

    Comment by Anonymous
    12:32 06/05/2011 # ! Neutral (0)

    This actually sounds plausible.

    Comment by Anonymous
    02:06 06/05/2011 # ! Quality (+1.0)

    Actually this Hack was done by the PSN Users that knew that Sony was going to cave in and offer a load of freebies.

    The best hackers are the ones with the hardware & software to do the hacking.

    I'll bet it was the slackers in the NSA who are just goofing off collecting a govt paycheck. And abusing the computing power of one of the world's strongest CPU networks.

    Comment by Anonymous
    03:04 06/05/2011 # ! Neutral (+0.4)

    WOrld strongest apache outdated server, with no patches whatsoever, truly a gigantic feat.

    Comment by Anonymous
    11:07 06/05/2011 # ! Neutral (0)

    You mean the ones who created a super computer from a bunch of ps3's?

    Comment by Anonymous
    04:46 06/05/2011 # ! Neutral (+0.2)

    Anonymous already said they didn't do it either a faction or they want to throw a mistrail

    Motives Include
    Free Stuff
    Weaker Security after Japan EarthQuake
    Linux Rage
    (Insert More Here)

    Comment by Anonymous
    05:26 06/05/2011 # ! Neutral (+0.2)

    When Xbox's Online system gets hacked - THEN, and only then will I not think Xbox Fanboys had anything to gain from this attack on Sony.

    At the end of all this the only person who benefits from this is Xbox weather Indirectly or Directly weather it was Anonymous or Some kid in his basement Microsoft is reaping the spoils. Not saying Microsoft is involved - but they are totally Benefiting just before "E3" in June....just to coincidental for me.

    Comment by Anonymous
    02:25 06/05/2011 # ! Neutral (0)

    It was clearly the US government that hacked sony, how else did they get osama's location.

    Comment by Anonymous
    14:43 06/05/2011 # ! Neutral (0)

    lol, 5 points to you sir :)

    Avatar of HouseLife
    Comment by HouseLife
    17:12 05/05/2011 # ! Quality (+1.0)

    This is not Anonymous. Because Anonymous is an ideal, and this does not follow the ideal. If this was a hacker who wants to blame the concept of being anonymous, then they are going to do a decent job, because most people are too stupid to understand the concept that 'Anonymous' is not and never was a true organization, but a scattering of cells of people following an ideal.

    It is more than easy for any asshole to pose as anonymous to point to as a scapegoat. First off, any hacker who would actually manage to hack Sony as anonymous wouldn't leave a mere portion of the credo. Second, the very basis of Anonymous is to bring light to the dark and unenlightened, while also doing it for the lulz. They do not steal, they obstruct. That may be illegal, but they will never do permanent damage themselves for the purposes of doing harm and harm alone.

    If it was someone who pretends to be following the basic elements of what Anonymous stands for while doing this, then they fail at life and should die. Anonymous themselves will go after them if that's the case, and happily hand them over to authorities.

    Comment by Anonymous
    17:42 05/05/2011 # ! Neutral (+0.2)

    So... they find me. I am guilty, see you guys in jail...

    Comment by Anonymous
    18:58 05/05/2011 # ! Neutral (0)

    Assuming what you say is true, there's one thing that remains true.

    In their vigilante style of justice, they brought down PSN and allowed the real criminals to get in (or more easily anyways) just for the lulz.

    It's like they decided to break down someone's door for the lulz/prank and left it there until the owner came home to fix it. Meanwhile, some real robbers go in and steal everything.

    They also caused a lot of problems for the users, you know, the ones they were supposedly fighting for (themselves probably too since they can't go on PSN). I guess if it's for the lulz... it's all good.

    Avatar of yuriphoria
    Comment by yuriphoria
    20:09 05/05/2011 # ! Neutral (+0.2)

    You don't seem to understand how computer intrusion works.

    Stressing a system actually makes intrusion harder.

    Firstly the DDoS attack itself will make it harder to access the service *by definition*. Unless it's taken offline which is nothing like breaking down a house's door, and more like blowing up the bridges to a castle surrounded by an infinitely deep abyss.

    Once the service is brought online again the admins would be extra observant, because no service is more vulnerable than the one that never demands attention.

    Admittedly, a DDoS attack could help masking probing of the service security but the disadvantages listed above outweigh this because even if holes are found the service would likely be fortified when it comes online again.

    Comment by Anonymous
    23:40 05/05/2011 # ! Neutral (+0.2)

    Well, it probably at least might have flooded some logfiles with garbage that the real attacks vanished in.

    Depending on how well the logging is set up, anyway.

    Comment by Dark Mage
    05:23 06/05/2011 # ! Neutral (0)

    Real data thieves ie black hat hackers don't want to announce their presence with DDOS attacks.

    They try to be like ghosts and make sure their presence is never known.
    Their target was the CC numbers and they want to uses as many of these as possible before the intrusion is known.

    Seeing how secure past Sony software was and the quality of shitware such as securom it's most likely Sony's network had security holes you could comfortably fly a star destroyer through.

    Avatar of yuriphoria
    Comment by yuriphoria
    06:41 06/05/2011 # ! Neutral (0)

    @The Negotiator
    > it's most likely Sony's network had security holes you could comfortably fly a star destroyer through.

    According to this report http://bit.ly/l0aVbJ they did.

    But are you sure that's a reference a Trekkie should be making?

    Avatar of HouseLife
    Comment by HouseLife
    19:31 05/05/2011 # ! Neutral (+0.2)

    Actually yes, it is. And your logic is exceptionally flawed. First off, you talk like some wall was destroyed that let bad people in. Systems don't work that way. Plus, nothing anonymous would have done would have affected Sony in any permanent way. In fact, they HADN'T done anything. They merely threatened retaliation for the company pretending that it was better than its customers. That didn't mean they had actually organized anything yet. It was great timing for whoever really hacked the system and stole the numbers, because they can easily make people like you believe Anonymous is a hostile entity because they were vocal about it.

    Thieves don't announce themselves. Any idiot knows this, and this is no different. Plus, Anonymous wouldn't shut down the network. They retaliate against constricting ideas, not the people affected by them. I guarantee you many of Anonymous are on PSN themselves and are just as annoyed.

    This actually follows all the classic signs of a propaganda campaign. All the elements were in place: an uncontrollable, generally untraceable group gaining strength in the eyes of the general public making a statement defining their next action, the action is done within an almost convenient amount of time, and something incriminating is left behind following enough of the MO to be recognizable, but doing some real damage instead. It is truly well done, but it is not the actions of the Anonymous ideals. No matter what happened, no matter who it was, by the very definition of Anonymous, it cannot be anyone who is of Anonymous.

    Comment by Anonymous
    23:44 05/05/2011 # ! Neutral (+0.2)

    Try hacking into anything that is suffering from a proper DDoS.

    Unless the admins of the attacked system are complete and utter retards and switch off security featurs in an attempt to lessen load, it virtually makes getting ANYTHING useful (like, in this case, a hacking attempt) through to the servers virtually impossible.

    Try getting a malformed http request through a DDoS. Chances are it'll never even reach the attacked webserver since the router in front of it just starts discarding requests at random.

    Comment by Anonymous
    00:17 06/05/2011 # ! Neutral (0)

    You're overlooking one small tidbit though.

    Anon is being accused of hacking SOE's MMO section, which a) was done prior to the PSN DDOS (if I'm getting my dates correct), b) is most likely on a separate server system, so the PSN DDOS wouldn't have effected it anyway.

    So there was no door breaking to begin with. At best you could argue, that because a bunch of folks chained themselves to the front gate of a logging company, that it distracted the security team from checking the back area of the compound for an actual intrusion.

    Or to use a more precise analogy. Suppose Greenpeace is protesting at a Lumbermill, and the Earth Liberation Front is making use of their distraction to say sabotage equipment.

    How culpable are Greenpeace then in what has occurred, considering other simply made use of what they did, and subsequently tried to smear them as being the actual culprits, to deviate attention from themselves.

    Comment by Anonymous
    07:56 06/05/2011 # ! Neutral (0)

    @ Anon 19:52

    This kind of SuPa HaXoRz who could hack switched off server from the net, exists only in bad b-movies. Get some alive brain cells for yourself.

    Avatar of HouseLife
    Comment by HouseLife
    04:19 06/05/2011 # ! Neutral (0)

    @ Anon19:52

    There are several posts here now that prove that what you've said here is at best misinformed. Your metaphor is completely incorrect and not worth considering, and you need to recognize that so that you don't continue propagating such misinformation to people who don't know any better. Anonymous is not part of this theft, period. The reason I am certain, is because Anonymous is not an organization of people with a hierarchy. Considering the anonymous credo, even if the hacker who did this were a part of anonymous, as soon as he did it, he would no longer be following the Anonymous ideal as soon as he decided to take these actions, and thus instantaneously no longer be Anonymous.

    That is why stupid people don't understand what Anonymous is. It is not a defined physical thing that they can shelve easily in their brains.

    Comment by Anonymous

    So you're saying that Anon DDoSed PSN and coincidentally that was the same day the real hackers decided to try and break into PSN?

    Permanent damage or not is irrelevant. They brought down the door and let the thieves in. Anon is known for mass DDoS attacks and they are known to announce their actions. They brought down the servers and in the confusion, the thieves got in so if Anon didn't go around flaunting their "justice", Sony and its users wouldn't be in this mess.

    And assuming they had no involvement at all, if they stopped playing armchair vigilantes, the thieves wouldn't have had a good excuse to hack PSN since according to you, they only did it because they found a scapegoat.

    So now their armchair vigilantism has affected the people.

    Comment by Anonymous
    19:33 05/05/2011 # ! Neutral (0)

    Lulz were had for Anonymous. I doubt it was for an ideal or for justice in any sense of the word.

    Comment by Anonymous

    House Life, that's a crock. You know that. I know that.

    Comment by Anonymous
    Avatar of Yoshii-kun
    Comment by Yoshii-kun
    17:19 05/05/2011 # ! Quality (+0.8)

    Whoever did it, doesn't change the fact Sony's screwed, big time.

    Avatar of TehBoringOne
    Comment by TehBoringOne
    17:30 05/05/2011 # ! Good (+0.5)

    This is more like pointing a finger. I don't doubt some Anons are capable of doing such a thing, but it seems to me Sony is saying "THEY DID IT! THEY WERE!" to divert attention from their clusterfuck.

    Avatar of H-Ero
    Comment by H-Ero
    18:27 05/05/2011 # ! Quality (+0.8)

    I seriously doubt that Anonymous would go as far as actually stealing information like this. They'd hack into Sony's servers but only to troll them and not cause any actual problems like this (especially since many of them are gamers and would also be affected by the PSN being down).

    Either Sony is just using Anonymous as a scapegoat so that people will stop bothering them about finding the real hackers, or the real hackers are using Anonymous as a decoy.

    Comment by Anonymous
    04:51 06/05/2011 # ! Neutral (0)

    Scapegoat is the word. Can't get out of it easily? Blame someone else. Or a whole lot of someone elses.

    Comment by Anonymous
    22:18 05/05/2011 # ! Neutral (0)

    Anonymous aren't an organisation. They are just people who sometimes have a common goal sometimes doesn't. Some anon thought it would be funny to steal 100 million account info so they stole it, the others are either victims to it or they don't fucking care.

    Comment by Anonymous

    http://www.qj.net/ps3/news/sony-it-wasnt-anonymous.html?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+qj%2Fps3+%28QJ.NET+-+PlayStation+3%29 [http://www.qj.net/ps3/news/sony-it-wasnt-anonymous.html?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed: qj/ps3 (QJ.NET - PlayStation 3)]

    https://www.facebook.com/group.php?gid=128934033783850

    ^
    Sums it up.

    Avatar of Vespertine Aspergerian Nincompoop
    19:23 05/05/2011 # ! Quality (+0.8)

    It's a common misconception that anonymous is comprised solely of sweaty teenage trolls.

    There are groups within anonymous that date back pretty much to the beginning of the internet.

    And just as not all members of anonymous are of one body, they are also not of one mind. They all may claim to be freedom fighters, but this cannot be the case realistically speaking.

    Comment by Anonymous
    01:01 06/05/2011 # ! Neutral (0)

    >A known vulnerability that became more vulnerable because of the LOIC DDoS attacks.
    There is at present no proof of that. Also, Sony initially claimed that Anonymous had made the hack possible by diverting their attention. Only later did they change their story to ‘we found this anonymous file’.
    Part of me wants to believe that someone self-identifying with Anonymous did it (and if so, chapeau) but I think Sony is just trying to pin the blame on someone, either because they can't figure out who did it, or because it was fully their own fault, or a bit of both.
    And remember that when you pick a scapegoat, the best strategy is not necessarily to figure out who most likely did it, no instead you pick someone you already hate, since that actually benefits you. In short, there is probably no correlation between Sony's pointing fingers and the actual culprit.

    Avatar of alidan
    Comment by alidan
    22:06 05/05/2011 # ! Neutral (0)

    Anonymous
    21:47

    i'm still saying that "anonymous" didn't. and i'm using anonymous as the masses, not the one person who fucks up the party. let me put it another way.

    you throw a party, one guy gets fucking wasted and throws up on someone else.

    its not YOUR fault that the douchebag got wasted and tossed cookies on some one, you are not to blame.

    if you are outside of anons ideals/what they are doing (in this case loic attack on psn) than you are not part of the collective.

    anon provided cover unknowingly, because i cant say they knew of that one vulnerability (fucking spell check and being tired, i missed that one) due to the fact that anon is always doing shit like this to people who they feel are in the wrong. this case was no different.

    i believe someone with the knowlage of that vulnerability was watching ANYONE who would attack sony, and than once it was obvious an attack was planned or in the planning, probably stirred the pot a bit, adding a bit of fuel to the fire, and insisting more rage, to get maximum cover.

    sony more or less gets this, thats why they aren't saying exactly who is the cause, because if it was anon, they would have left the note, and if it wasn't, they would have left the note. but the difference is, anon would have crippled the servers from the inside, not stolen information.

    Comment by Anonymous
    21:47 05/05/2011 # ! Neutral (0)

    @Alidan - A know Vulnerability that became MORE vulnerable BECAUSE of the LOIC DDoS attacks.

    Either way, I stated on here a while back that it was anonymous, and everyone replied back saying " OH NO, THEY SAID THEY DIDN'T DO IT "

    All I have to say is this: Told you so...

    Avatar of alidan
    Comment by alidan

    you also have to remember, that they exploited a KNOWN VENERABILITY, something that should have been patched.

    but i have to give kudos to who ever did this, they did it at the same time anon loic the hell out of psn, and dirverted a large ammount of attention away. and snuk into soe before psn...

    they may not be anon, but they had to have stirred the pot.

    Comment by Anonymous
    18:00 05/05/2011 # ! Neutral (+0.2)

    This reminds me of G.I.T.S. they need the Major to solve this.

    Avatar of Vespertine Aspergerian Nincompoop
    07:46 06/05/2011 # ! Neutral (0)

    "Multiple copies without an original"

    Actually that's pretty accurate to anonymous' early history. From what I understand the whole thing started when image boards gave unregistered users the screen name "anonymous," a name which through a meme later became treated like that of a real (singular) user.

    And from there you have the basis for a stand alone complex.

    Hm.

    Come to think of anonymous became organised right around the same time GiTS SAC first aired on television right? If so I wonder if somebody who was inspired by the stand alone complex phenomenon took advantage of the situation in 2-chan to create the Anonymous group that we know today.

    Food for thought.

    Avatar of Thomus
    Comment by Thomus
    21:18 05/05/2011 # ! Neutral (0)

    Its just like the Nazi pointing the fingers to the Jews, THEY MADE US LIKE THIS SO LETS F*CK EM UP GOOD

    Comment by Anonymous
    21:02 05/05/2011 # ! Neutral (0)

    It was the US Government who hacked PSN and SOE to locate BIN LADEN location

    Comment by Anonymous
    22:01 05/05/2011 # ! Neutral (0)

    That joke is getting old

    Comment by Anonymous
    14:48 06/05/2011 # ! Neutral (0)

    your getting old

    Comment by Anonymous
    22:05 05/05/2011 # ! Neutral (0)

    To locate Bin Ladens location?

    We have located his location. His location is located over there, let us now locate him and not just his location.

    Comment by Anonymous

    Looks like the Japanese economy is not going to be better anytime soon...

    Comment by Anonymous

    this sort of reminds me of tron








    Post Comment »

Popular

Recent News

Recent Galleries

Recent Comments