Stringer Defends PSN Hack Response Time

It took a week for Sony to reveal the truth about the PlayStation Network hack, and during that time gamers were kept away from what was happening via a series of vague ‘maintenance’ messages and somewhat woolly Blog updates.

Today, though, Howard Stringer, Sony’s chief executive, has spoken out on the time taken to update PS3 and PSP users.

– ARTICLE CONTINUES BELOW –

“This was an unprecedented attack,” he told reporters. “A lot of these breaches are never reported by companies or it takes companies a month. You’re telling me my week wasn’t fast enough?”

He also commented on the costs for the system being offline for so long.

“There’s a charge for the system being down, a charge for identity theft protection,” Stringer said. “The charges mount up but there are no numbers yet.”

Source: Reuters, via Eurogamer.

– PAGE CONTINUES BELOW –

28 Comments

  1. Well had they said, “oh this is what was wrong” the hackers would have known what they could get or got, so they couldn’t really divulge the breach, had to keep it anonymous (no pun)

  2. “…there are no numbers yet”

    I’m guessing it will be BIG.

    • I’d be surprised if it wasn’t billions.

      • TRILLIONS!!!!

      • I wouldn’t be surprised if the technical costs were quite minimal, in relative terms, but that bloody share price is crippling!

      • gazillions! :P

      • Googols!

      • what’s Googols Tef? I supect it will be 1 million million gazlion,billion trillion pounds and one pence.

      • Why don’t you Google it?

      • Just googled it.Teffers,you are a madman!noone has that much money.Not even(insert subject name here) has that much.:O

      • googols?
        does that much money even exist?
        even in yen that would be more than the entire wealth of the earth surely.

        no i didn’t know what a googol was, i googled it.

        actually, i wonder if there’s any connection between google and a googol, was one named after the other?
        i’d heard of the word googolplex, though i don’t know where from and i didn’t know what it meant.

      • Yes, Google was named for the googol according to its founders.

      • Oh, and a googolplex is a ridiculously big number: 1^10^100.

  3. What kinda got me pissed about this whole thing, was the “it’ll be back in a couple of days”. They obviously knew what the problem was, but to be fair, not the extent.

    It wasn’t their fault, and they did their BEST to build back a system in 3 weeks! I just didn’t like that I was holding my breath for a couple of days, only to be treated with “silent treatment” by Sony.

  4. You do like using my Shocked Granny icon :)

  5. I think Sony were right to be cautious with their info and make sure what they were announcing was based in fact, although there was big gaps in their announcements that from a customer service point of view would have been better if they could have trickled factual information as they went along.

    Unprecedented? Despite the use of long-outdated and obsolete software which has had its exploits & vulnerabilities talked about for years and with regards to the PSN specifically for a few months? Mr. Link and Mrs. Link

    IMO as far as customers are concerned the line has been drawn under the saga with Kaz’s apology and the offer of ID Protection.

    In addition to that turning point; Sony started on the road back into the hearts & minds of their non-core fans with their goodwill gesture Welcome Back Program.

    Obviously various authorities will still be interested in how much or little Sony did to protect everyone’s data but that’s a matter between them & Sony and as far as customers are concerned that’s out of their control. I’m not sure we’ll ever find out short of the perpetrators coming out and saying how they did it.

    Although it’s doubtful, hopefully the perpetrators are brought to justice whether their some random criminal hackers, Anon, whoever or people responsible for potential failings on Sony’s part.

    • Just to provide a view from the other side of the fence on one aspect of the “long-outdated and obsolete software” issue here’s a link that says the PSN servers were running the latest, stable release of Apache.

      I don’t claim to know which side of the ‘argument’ is right, but both sides do exist.

      • Thank you for mentioning that Watchful. I would have been less polite in my correction.

        It’s interesting how, over time, things that are unsubstantiated rumour somehow become internet folk law. Case in point, the unsubstantiated rumour that the Sony Apache servers were out of date.

        Everybody loves to assume Sony had zero protection, doors open and handed over their databases. Use your brain, you know that isn’t the case.

      • @JesseDeya, why be less polite? No one is too you.

        It’s not strictly speaking a correction, these are new details that have just emerged today, newer than the old IRC logs that were debunked a week or two ago as detailed in your link. This new info regarding potential Sony security oversights, lapses or whatever and is entirely unrelated to the Apache version of server software that Sony was or was not running.

        OpenSSH Version

        “For example, the OpenSSH 4.4 service that was used to encrypt data communication. The current version is 5.7, however. The version used by Sony has security holes that had already been known for five years. Sony’s other programs and services also do not reflect the current standards of security technology.”

        What is OpenSSH that today Sony were reported by ComputerBild to be running an obsolete version of? According to its website
        “….Users of telnet, rlogin, and ftp may not realize that their password is transmitted across the Internet unencrypted, but it is. OpenSSH encrypts all traffic (including passwords) to effectively eliminate eavesdropping, connection hijacking, and other attacks. Additionally, OpenSSH provides secure tunneling capabilities and several authentication methods…”

      • @JesseDeya It’s not a correction. It’s just more information. It also shows that there were a few Sony servers were running an older Apache version. It simply addresses, as I said, one aspect of the issue and says nothing about the version of OpenSSH that was being run as cc_star points out above.

      • Sorry CC, ‘polite’ wasn’t the correct word, I’m not trying to be rude. Rather I wish to forcefully point out that ALL of these rumours are just that, rumours, and completely unsubstantiated.

        You linked to the Bild article as if it were gospel but it’s far FAR from it. Clearly the author is overly emotive (accusing Sony of lying for example) and has a specific agenda – discredit Sony. His only ‘evidence’ is information supposedly leaked to him from Anonymous. This isn’t new information, this is the same stuff people were pulling from IRC logs in February, and again, unsubstantiated.

        Why on Earth anyone would believe Anonymous about this is beyond me. They are a lawless, unaccountable group who have deliberately set out to damage and discredit Sony. Of course they are going to make claims about Sony’s servers being out of date, and people are lapping it up like it’s a fact, including media outlets that love sensational headlines.

        In that same Bild article where they make mention about OPENSSH 4.4, they also claim Sony were using Apache 2.2.10. They even have the audacity to label their blurry screen grabs (from Anonymous no less) as FACT. It’s laughable what get’s reported on these days. As has been shown by using Google’s cache, Sony’s PSN servers were running the latest stable Apache 2.2.17 back in March, so why would we assume their OPENSSH wasn’t also up to date? The only claim to the contrary comes from a completely non verifiable source who has a vested interest in discrediting Sony. You do the math.

        ComputerBild aren’t reporting fact here, they have written a speculation piece based on hearsay and dressed it up to fool everyone. I’m not convinced either way, but I’m sure as hell not believing what Anonymous have to say.

  6. secretly sony wanted to take down the psn and replace it with a better system, more adapt, especially with the launch of the ngp nearing and so they, realising such a fleet would take months, hacked their own network and as a result was like oh shit, all this unexpected backlash and thus hired all the ninjas around the world to fix up the network asap

    In all seriousness, the way Sony have conducted themselves is a testimate and should be an example to other companies.

  7. Oh forget about all this cr*p! This is better news – PS3 only £199.99 at Amazon.co.uk! :P

  8. People really can be two faced can’t they? Everyone was slinging expletives round left, right and centre only a couple of weeks ago for their terrible customer service. Look at everyone now saying how well they did, amazing!

  9. He sure goes out of his way to sound like a dick.

    • As I’m still waiting for my e-mail to reset the password on the account I’m using to play Portal on co-op, 48+ hours after it was requested, on top of what IMO is a poor welcome back package. I think their communication and customer service is unchanged.

  10. Here we go……

Comments are now closed for this post.