Profiling: Who Hacked The PlayStation Network?

Profiling: Who Hacked The PlayStation Network?
1 Star2 Stars3 Stars4 Stars5 Stars (1 votes, average: 4.00 out of 5)
Loading...

Thread level, Wired’s security blog disserts possible suspects in the last attack that brought down Sony’s network, leaking an unacountable number of passwords, email addresses and credit card information. Forget China and Anonymous. It’s either a recreational hacker or more likely an organized group from Eastern Europe.

Users tend to reuse their passwords among different sites from Facebook to Bank accounts. From there, one can easily foresee the different hacking possibilities arising from this simple fact With the increase of such hacks, should we consider banning any sensitive information from being stored on-line?

“Wired – Threat Level:

These guys, largely concentrated in Ukraine and Russia, know databases like the backs of their hands — they dream in SQL — and similar, if smaller, stolen databases are bought and sold routinely over carder forums and in private transactions.

In this scenario, the credit card numbers potentially stolen in the hack aren’t as important as they seem. According to Sony, the CVV2 — the security code on the back of card — wasn’t stored in the compromised database, which greatly reduces the cards’ usability to fraudsters. Credit cards without the magstripe data or CVV2 are among the least valuable commodities.

But combined with the other data, the database is valuable indeed. The passwords (which Sony evidently didn’t bother to hash)  could be a gold mine, because people have a tendency to use the same password everywhere; you can bet a big chunk of those 77 million PlayStation Network passwords will unlock everything from Facebook accounts to online banking. The e-mail addresses could be used in phishing attacks, with the fraudster using stolen details — like the target’s date-of-birth — to increase the chances of a response. Hell, even if it were just sold as a spam list, the Sony database could draw a pretty penny.”

Source: http://www.wired.com/threatlevel/2011/04/playstation_hack/

Photo Credit: Hacking a un router Imagenio By Tilthz / FlickR