Sony implicates Anonymous in PlayStation Network hack
Legions 'duped,' company says
Forensics experts investigating the security breach on Sony's PlayStation Network found a file on one of the hacked systems that was titled “Anonymous” and contained the phrase “We are Legion,” the company's chairman told members of congress.
The revelation, made in a letter, (PDF here) that Sony Chairman Kazuo Hirai sent on Tuesday to members of the US House of Representatives, was used to support the company's contention that the massive security breach was carried out by members of Anonymous, the loosely organized griefer and hacker collective that sometimes uses the tag line: “We are Legion.”
“Just weeks before, several Sony companies had been the target of a large-scale, coordinated denial of service attack by the group called Anonymous,” Hirai wrote. “The attacks were coordinated against Sony as a protest against Sony for exercising its rights in a civil action in the United States District Court in San Francisco against a hacker.”
The sophistication of the PSN attackers, combined with the continuing DDoS attacks, made it hard for Sony admins to detect the compromise, which has resulted in the wholesale theft of personally identifiable information associated with 77 million accounts. Almost two weeks into the investigation of the hack, Sony learned that Station.com, its PC games site, was also breached, resulting in theft of PII associated with an additional 25 million accounts.
“Whether those who participated in the denial of services attacks were conspirators or whether they were simply duped into providing cover for a very clever thief, we may never know,” Hirai wrote. “In any case, those who participated in the denial of service attacks should understand that – whether they knew it or not – they were aiding in a well planned, well executed, large-scale theft that left not only Sony a victim, but also Sony's many customers around the world.”
Hirai's eight-page letter didn't leave open the very real possibility that the DDoS attacks were unrelated to the security breach. It wouldn't be a stretch for those who penetrated Sony's servers and stole the mountains of data to have left the file behind as a decoy intended to distract investigators from the true culprits.
Stay tuned for an update. ®
http://www.theregister.co.uk/2011/05...tes_anonymous/
Anyone else get the impression they are just trying to create sympathy for themselves whilst demonising anonymous ?
Seems all too convenient too me.
Social Networking Bookmarks