Coming off one of the toughest attacks ever against Sony's database, the company's chief executive officer is positive the company hasn't seen the last hack attempt.
In a roundtable interview with Bloomberg, The Financial Times and The Wall St. Journal, CEO Howard Stringer said the attacks on the PlayStation Network and Qriocity entertainment services were merely a hiccup in the company's online strategy. He says attacks will keep coming and the latest encounter reminded Sony of how vigilant it has to be.
It's one of those dynamic situations where the bad guys get better and the good guys have to keep getting better too. It's not a brave new world; it's a bad new world, Stringer said. It's a never-ending process and I'm sorry we're the ones to introduce it on a large scale for the whole world, but I think the world is beginning to get it.
In early April, a hacker infiltrated Sony's online services database and accessed customer information. The hack forced Sony to shut down its PlayStation Network and Qriocity services from April 20 to May 15. The company recently restored service to the network and is now offering a Welcome Back package to customers.
Sony has prepared itself well in case of another hack. The network, which fell victim to an unauthorized infiltration to its databases in early April, requires Qriocity and PS3 users to reset their passwords immediately upon signing in. Furthermore, passwords can only changed on the PS3 in which the account was activated or through validated email.
It has made considerable enhancements to data security, including updating and adding advanced security technologies, putting in additional software monitoring and penetration and vulnerability testing and increased levels of encryption, additional firewalls and an early warning detection system.
Stringer said he thought Sony's security practices before the attack were pretty good, and in the five years of the PlayStation Network, there had never been a single attack until this one. Other than the initial denial-of-service attacks initiated by the hacker group Anonymous, Stringer said Sony still did not know who was behind the attack.
In addition, Stringer defended the timeliness of the entire ordeal, saying Sony acted fast when it came to informing its customers on what was believed to be lost. You can't find a company that acted any quicker once it found out, Stringer said.