Sony cut security staff before hacker attacks

Publisher faced with lawsuit highlighting its failures to protect customer information

A class action lawsuit filed this week alleges that Sony laid off security staff and failed to respond to smaller attacks in the run up to attacks on the PlayStation Network and the Sony Online Entertainment Network.

According to Reuters, the lawsuit cites a confidential witness and says employees from Sony Online Entertainment's Network Operations centre, which is responsible for preventing and handling attacks on data, were let go.

The lawsuit also argues that the same precautions used to safeguard company data, like firewalls, were not applied to customer data.

The suit was filed on Monday, and Sony has yet to comment on the case.

Around 77 million PlayStation Network and Qriocity accounts were compromised by the attacks, as well as the data of 25 million users of the Sony Online Entertainment PC games network.

Related stories

Horizon: Zero Dawn hits 2.6m sales

Developer Guerrilla now working on a 'story expansion'

By Christopher Dring

Vita was simply too late - Tretton

Former SCEA CEO says Sony's latest handheld was a great machine launched when few people wanted a dedicated gaming portable

By Brendan Sinclair

Latest comments (4)

Andrew Jakobs Lead Programmer 6 years ago
@Andrew Ihegbu: They didn't have complete controle over the network, Sony took the sites down and then started to work on getting a better security.. And when is security inadequate? Some hackers are very smart and when you go online, it's just impossible to secure it so noone can enter it.. What seems adequate for today may be inadequate tomorrow.. If you really want to be safe from hackers, then don't go online..
0Sign inorRegisterto rate and reply
Christopher Bowen Editor in Chief, Gaming Bus6 years ago
Andrew, that's a load of crap. If the things that are being accused in this lawsuit are accurate - namely, that Sony made sure to protect their own corporate secrets at the expense of their consumers (which would play similar to how they've acted in the past), they have a lot of explaining to do. You can't just say "don't go online if you don't want to be hacked"; 99% of the "hackers" out there are just script kiddies.
0Sign inorRegisterto rate and reply
Morgan Owen Studying Electronic engineering, University of Nottingham6 years ago
Agreed. The problem with most of the recent attacks is the complete an utter lack of sophistication. You can't expect your data to be 100% hacker proof but you'd hope they'd atleast try encryption or protection against some low level attacks.
0Sign inorRegisterto rate and reply
Show all comments (4)
Rafael Brown Lead Designer, id software6 years ago
@Andrew Jakobs - I have to agree with Chris Bowen. The article states that customer data was not kept behind firewalls. Even most consumers these days know to use one or multiple firewalls. Sony did not anticipate that they would ever be hacked. They cut staff and had inadequate protection to customer, our, data. That is unacceptable plain and simple. Sony will be rebuilding customer confidence in their online services for years.

And when is security inadequate? When hackers can take down the entire PSN system for a month before Sony can bring it back up. The duration it was down implies a level of damage, a level of theft and a final level of awareness of the complete and utter inadequacy of their security measures that they needed to revamp drastically. I'm not saying its bad for them to take the system down. It was the right thing to do. And I applaud them keeping it down until they could bring PSN back up safely. What I do not applaud is the utter stupidity that got them there in the first place.
0Sign inorRegisterto rate and reply

Sign in to contribute

Need an account? Register now.