Already infamous for defacing PBS's website earlier this week, cracking outfit LulzSec today claimed a familiar scalp—whatever remains of it, anyway. This time, it's Sony Pictures Entertainment, the movie-making division. From a statement attributed to the group:
Our goal here is not to come across as master hackers, hence what we're about
to reveal: SonyPictures.com was owned by a very simple SQL injection, one of
the most primitive and common vulnerabilities, as we should all know by now.
From a single injection, we accessed EVERYTHING. Why do you put such faith in
a company that allows itself to become open to these simple attacks?
What's worse is that every bit of data we took wasn't encrypted. Sony stored
over 1,000,000 passwords of its customers in plaintext, which means it's just
a matter of taking it. This is disgraceful and insecure: they were asking for it.
The haul of data, already posted to The Pirate Bay, also includes 3.5 million Sony Music coupons.
Sony traditionally is run as a set of 'silos', independent departments, divisions and joint ventures that have much autonomy from one another. This might be why there are so many different attacks: perhaps there is always another Sony silo which runs its own web infrastructure, where hundreds of dollars worth of web development can go down the drain, just like that.
Canada’s privacy authorities on Friday said they are investigating New York-based Clearview AI over concerns the facial recognition technology may not comply with Canadian privacy law.
Ethos, the private equity firm owned by Republican billionaires that is trying to buy the rights to operate the internet’s .org domain range, said on Friday it will cap price hikes, and will agree to create an advisory board with veto powers to partly address some of the concerns of the nonprofit community.
Facebook is reportedly considering making it just a wee bit clearer that pro-Bloomberg political campaign posts come from paid staffers on Michael Bloomberg’s political campaign. Yes, 2020 is bonkers.
Website building apps are all about one thing — helping you craft a great-looking, fast-running website without having to mess with all that back-end code. However, nobody wants their site to look just like a template, so customization is all but a must. So how easy is it to make those changes and still not […]
In our modern world, our usual first approach to combating an oncoming cold is to medicate it into oblivion. Sometimes, that carpet bombing pharmaceutical attack plan can knock out the congestion and discomfort of an illness before it settles in. But there’s always something to be said for trying to put down the effects of […]
Whether you’re managing a political campaign or building a client base, there comes a time when you stop seeing people and start seeing numbers. This doesn’t happen suddenly. You shake hands, make calls, and build relationships. And then those relationships disappear into a database of donors or customers as your organization grows. People get brought […]