As a penalty for the PSN or PlayStation network hack that appeared last April 2011, Sony has obtained a record of £250,000 punishment from the ICO or the Information Commissioner’s Office. It substantially opposed with the final decision and will plea over the punishment, said by the electronics company. As a contemplative rupture of the Data Protection Act, the Information Commissioner’s Office recognize the attack that distinguished Sony diminish its PSN for just 24 days.
With email addresses, account passwords, dates of birth, names and addresses, the PSN hack intertwine the personal information of millions of PlayStation users. Apart from that, customers’ credit card details were also considered to be probably in trouble. The rupture could have been restricted if the passwords had been collected more tightly and software had been timely.
According to the ICO deputy commissioner and director of data protection, David Smith, if they are accountable for so many payment card information and log-in details then securing those kind of personal data has to be their first concern. But in that case it didn’t turn out that way, and when the database was pointed it out although in a serious criminal attack, looks like the security measures available were possibly not good enough to reveal.
He also added that there is no assuming that this is a business that have to be able to recognize more. This argument is one of the most intense report that they encountered. A large number of customers put them at the risk of identity theft and they are all affected with that case. Sony said that it will demand over the ICO’s ruling.
It claimed that there was no proof to recommend encrypted bank information were collected, asserting it takes securing customer details very intently. In a statement Sony said that they continually manage to enhance their systems, establishing multiple layers of defence and performing to make their networks reliable, secure and guarded.
They also stated that the criminal attacks on electronic networks are truly exist and it is growing sign of the 21st century life. The most important for them is the security of their customers’ information and the dependability of their network services. They are grateful that their network services are being used by even more individual all over the world nowadays rather than the time of the criminal strike.
The primary lessons on information security are not being understood said by the head of cyber security at Thales UK, Ross Parsell as he gave his side about the Sony breach. A perimeter-based technique for security based over firewalls and defensive controls within the IT network is no longer adequate. He also added that the organizations need to reconsider their way to information security and be cautious in determining and securing data itself based on the sensitivity of that information.
REFERENCES:
http://www.computing.co.uk/ctg/news/2238805/ico-fines-sony-gbp250-000-for-playstation-network-hack
http://www.pcmag.com/article2/0,2817,2414637,00.asp
http://www.computing.co.uk/ctg/news/2238805/ico-fines-sony-gbp250-000-for-playstation-network-hack
http://www.itpro.co.uk/645271/sony-to-appeal-250-000-playstation-network-hack-fine
http://www.thetimes.co.uk/tto/business/industries/technology/article3666922.ece
http://asia.gamespot.com/news/sony-europe-fined-250000-for-2011-playstation-network-hacking-6402875