Overclock.net › Forums › Industry News › Video Game News › [BB]Amazon Server Said to Be Used in Sony Attack
New Posts  All Forums:Forum Nav:

[BB]Amazon Server Said to Be Used in Sony Attack

post #1 of 34
Thread Starter 
Quote:
Amazon.com Inc. (AMZN)’s Web Services cloud- computing unit was used by hackers in last month’s attack against Sony Corp. (6758)’s online entertainment systems, according to a person with knowledge of the matter.

Hackers using an alias signed up to rent a server through Amazon’s EC2 service and launched the attack from there, said the person, who requested anonymity because the information is confidential. The account has been shut down, the person said.
The development sheds light on how hackers used the so- called cloud to carry out the second-biggest online theft of personal information to date. The incursion, which compromised the personal accounts of more than 100 million Sony customers, was “a very carefully planned, very professional, highly sophisticated criminal cyber attack,†Sony has said.


Source
post #2 of 34
Oh snap.
The Computer
(7 items)
 
  
CPUMotherboardGraphicsRAM
Phenom II x4 970BE @ 3.5Ghz ASRock Extreme3 870 @ 2.4Ghz 2x GTX 465 sli [1.03v 730/1460/1650]  8gb DDR3 @1333mhz 
CoolingOSMonitor
CM V8 Win7 64bit HP 2210m 1920x1080 
  hide details  
Reply
The Computer
(7 items)
 
  
CPUMotherboardGraphicsRAM
Phenom II x4 970BE @ 3.5Ghz ASRock Extreme3 870 @ 2.4Ghz 2x GTX 465 sli [1.03v 730/1460/1650]  8gb DDR3 @1333mhz 
CoolingOSMonitor
CM V8 Win7 64bit HP 2210m 1920x1080 
  hide details  
Reply
post #3 of 34
Quote:
Originally Posted by IzninjaFTW View Post
Oh snap.
Indeed.
looks like the cloud needs some more work before they bring it on full force.
1683
(19 items)
 
  
CPUMotherboardGraphicsRAM
4690k Asus Maximus VI HERO MSI GTX 980 Gaming 4g 8GB ripjaws 
Hard DriveHard DriveCoolingCooling
crucial m4 raptor Aqua computers Kryos HF EK Ultimate 360 XTX 
CoolingOSMonitorKeyboard
CPX Pro Windows 8.1 Pro Asus swift das model s pro 
PowerCaseMouseAudio
corsair tx750 haf 932 logitech g-402 asus xonar 
Audio
M-audio m3-6 
  hide details  
Reply
1683
(19 items)
 
  
CPUMotherboardGraphicsRAM
4690k Asus Maximus VI HERO MSI GTX 980 Gaming 4g 8GB ripjaws 
Hard DriveHard DriveCoolingCooling
crucial m4 raptor Aqua computers Kryos HF EK Ultimate 360 XTX 
CoolingOSMonitorKeyboard
CPX Pro Windows 8.1 Pro Asus swift das model s pro 
PowerCaseMouseAudio
corsair tx750 haf 932 logitech g-402 asus xonar 
Audio
M-audio m3-6 
  hide details  
Reply
post #4 of 34
Quote:
Originally Posted by 0m3g4 View Post
Indeed.
looks like the cloud needs some more work before they bring it on full force.
How so? Elaborate... Just because a group used a service for 'evil' does not mean it is a bad service...
For sale
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7-920 Asus P6T Deluxe Asus GTX460 TOP 768mb G Skill ECO 1600 CAS7 1.35V 
Hard DriveOptical DriveOSMonitor
2x Vertex 60 GB raid[0] Asus DVDRW W7,Ubuntu 2 xAsus VH236H 
KeyboardPowerCaseMouse Pad
Razer Ultra X3 1000W HAF 932 My Desk 
  hide details  
Reply
For sale
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7-920 Asus P6T Deluxe Asus GTX460 TOP 768mb G Skill ECO 1600 CAS7 1.35V 
Hard DriveOptical DriveOSMonitor
2x Vertex 60 GB raid[0] Asus DVDRW W7,Ubuntu 2 xAsus VH236H 
KeyboardPowerCaseMouse Pad
Razer Ultra X3 1000W HAF 932 My Desk 
  hide details  
Reply
post #5 of 34
Quote:
Originally Posted by cdolphin View Post
How so? Elaborate... Just because a group used a service for 'evil' does not mean it is a bad service...
The fact that it COULD be used this way is a serious problem. This shouldn't be a perk of cloud based computing, and also leads me to believe there is some serious control issues / safe guards that should have been considered in the first place to prevent users from using the system for a nefarious means.

Essentially, Amazon could have brought down itself with enough resources at the groups disposal.
Snowdevil
(16 items)
 
ASUS G750JM
(9 items)
 
 
CPUMotherboardGraphicsGraphics
[i7 4790K @ 4.4 GHz (1.186v)] [Asus Sabertooth Z97 Mark S] [nVidia Geforce GTX 1080] [nVidia Geforce GTX 1080] 
RAMHard DriveCoolingOS
[G.Skill 32GB DDR3 2133 MHz] [Crucial MX100 256GB] [Phanteks PH-TC12DX] [Win 10.1 Pro] 
MonitorMonitorKeyboardPower
[LG 29UM65 (2560x1080)] [QNIX Evo II LED (2560x1440)] [WASD v2 Tenkeyless] [NZXT Hale90 v2 ] 
CaseMouseMouse PadAudio
[ThermalTake GT10 Snow Edition] [Razer Mamba - Chroma] [Razer Kabuto] [Razer Man O' War] 
CPUMotherboardGraphicsRAM
i7 4770HQ Intel HM87 Express Chipset Geforce GTX 860M 8GB DDR3L 1600 MHz 
Hard DriveOptical DriveCoolingOS
Samsung SSD EVO DVD-RW Stock Windows 8.1 
Monitor
1920x1080 TN 
  hide details  
Reply
Snowdevil
(16 items)
 
ASUS G750JM
(9 items)
 
 
CPUMotherboardGraphicsGraphics
[i7 4790K @ 4.4 GHz (1.186v)] [Asus Sabertooth Z97 Mark S] [nVidia Geforce GTX 1080] [nVidia Geforce GTX 1080] 
RAMHard DriveCoolingOS
[G.Skill 32GB DDR3 2133 MHz] [Crucial MX100 256GB] [Phanteks PH-TC12DX] [Win 10.1 Pro] 
MonitorMonitorKeyboardPower
[LG 29UM65 (2560x1080)] [QNIX Evo II LED (2560x1440)] [WASD v2 Tenkeyless] [NZXT Hale90 v2 ] 
CaseMouseMouse PadAudio
[ThermalTake GT10 Snow Edition] [Razer Mamba - Chroma] [Razer Kabuto] [Razer Man O' War] 
CPUMotherboardGraphicsRAM
i7 4770HQ Intel HM87 Express Chipset Geforce GTX 860M 8GB DDR3L 1600 MHz 
Hard DriveOptical DriveCoolingOS
Samsung SSD EVO DVD-RW Stock Windows 8.1 
Monitor
1920x1080 TN 
  hide details  
Reply
post #6 of 34
^
it could and will be used that way even if there was some kind of safe guard against it installed.
    
CPUMotherboardGraphicsRAM
i7 2600k 4.6ghz 1.376v Msi Z68A-G43 (cheap board!!) MSI 390 Gaming 16gb G.skill Ripjaws X 1866 
Hard DriveOptical DriveCoolingOS
Multiple HHD and SSD over 12tb LG GGC-H20L Custom cpu water loop Windows 8 pro 
MonitorPowerCase
AOC u2879vf Corsair tx-750 HAF 912 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
i7 2600k 4.6ghz 1.376v Msi Z68A-G43 (cheap board!!) MSI 390 Gaming 16gb G.skill Ripjaws X 1866 
Hard DriveOptical DriveCoolingOS
Multiple HHD and SSD over 12tb LG GGC-H20L Custom cpu water loop Windows 8 pro 
MonitorPowerCase
AOC u2879vf Corsair tx-750 HAF 912 
  hide details  
Reply
post #7 of 34
Quote:
Originally Posted by RagingCain View Post
The fact that it COULD be used this way is a serious problem. This shouldn't be a perk of cloud based computing, and also leads me to believe there is some serious control issues / safe guards that should have been considered in the first place to prevent users from using the system for a nefarious means.

Essentially, Amazon could have brought down itself with enough resources at the groups disposal.
These types of services (Amz Cloud, VPS, Dedicated server, etc.) give you a server. You have full control over what OS you install, the programs you install, and what you do with it.

It would be almost impossible to monitor every single users server.
ColdCut
(14 items)
 
YetiKube
(19 items)
 
 
CPUMotherboardGraphicsRAM
5960x Asus Rampage V Extreme  XFX 295x2 Core Hydro Edition CORSAIR Vengeance LPX 16GB DDR4 2800 
Hard DriveHard DriveHard DriveOptical Drive
Samsung 850 Pro  Samsung 850 EVO Western Digital Black 3TB  LG Bluray Burner 16x 
CoolingOSMonitorPower
H110i GT Windows 8.1 Pro Asus 4k Corsair AX1500i  
CaseAudio
Corsair 900D Stock 
CPUMotherboardGraphicsRAM
(1) 2500K ASRock Extreme3 Gen3 GTX 780 Classified Mushkin 996995 DDR3 1600 (2 Sticks) 
Hard DriveHard DriveHard DriveOptical Drive
Samsung 840 Pro (1) 150GB Western Digital Raptor (1) 1TB Western Digital Black Caviar (1) Samsung SATA DVD Burner 
CoolingOSMonitorKeyboard
Antec Kuhler H2O 620 Windows 8.1 LG 21:9 Ultrawide 34" 3440x1440 Filco 114 key (Blue Cherry) / HHKB Pro 2 
PowerCaseMouseMouse Pad
Corsair HX850W - 850W Mountain Mods - U2 UFO Orginal - Gloss Black Logitech G400 / Razer Deathadder BE Razer Goliathus Extended / Artisan Hien VE (Sof... 
AudioOtherOther
Creative Sounds Blaster X-FI Titanium HD Asus USB N-53 Wireless USB adapter  12 Case Fans 
  hide details  
Reply
ColdCut
(14 items)
 
YetiKube
(19 items)
 
 
CPUMotherboardGraphicsRAM
5960x Asus Rampage V Extreme  XFX 295x2 Core Hydro Edition CORSAIR Vengeance LPX 16GB DDR4 2800 
Hard DriveHard DriveHard DriveOptical Drive
Samsung 850 Pro  Samsung 850 EVO Western Digital Black 3TB  LG Bluray Burner 16x 
CoolingOSMonitorPower
H110i GT Windows 8.1 Pro Asus 4k Corsair AX1500i  
CaseAudio
Corsair 900D Stock 
CPUMotherboardGraphicsRAM
(1) 2500K ASRock Extreme3 Gen3 GTX 780 Classified Mushkin 996995 DDR3 1600 (2 Sticks) 
Hard DriveHard DriveHard DriveOptical Drive
Samsung 840 Pro (1) 150GB Western Digital Raptor (1) 1TB Western Digital Black Caviar (1) Samsung SATA DVD Burner 
CoolingOSMonitorKeyboard
Antec Kuhler H2O 620 Windows 8.1 LG 21:9 Ultrawide 34" 3440x1440 Filco 114 key (Blue Cherry) / HHKB Pro 2 
PowerCaseMouseMouse Pad
Corsair HX850W - 850W Mountain Mods - U2 UFO Orginal - Gloss Black Logitech G400 / Razer Deathadder BE Razer Goliathus Extended / Artisan Hien VE (Sof... 
AudioOtherOther
Creative Sounds Blaster X-FI Titanium HD Asus USB N-53 Wireless USB adapter  12 Case Fans 
  hide details  
Reply
post #8 of 34
Quote:
Originally Posted by RotaryKnight View Post
^
it could and will be used that way even if there was some kind of safe guard against it installed.
Well I don't claim to know anything about Cloud, BUT someone should have noticed... "hey there is a lot of traffic to and from Sony's servers (or Server X thats international.) I am fairly sure this company stated most of its traffic would be domestically located within the US." Even tell Sony, hey, we heard you got attacked yesterday, can we do anything to help? We seemed to have found a lot of traffic between our client's usable equipment and your servers. Four weeks of lag on the investigation is a really long time on the interwebz.

As far as fraudulently renting equipment, how about a background check, social security number (that is validated), there are some low tech things we can do, that other institutions use such as, Banks, meeting people in person with IDs and sometimes biometrics (finger prints etc.) to prove ones identity.

There are plenty of ways to prevent the initial fraudulent sign-up... maybe a little scrutiny would have gone a lot further. There have been a lot of hack jobs lately, it wouldn't surprise me if they were all semi-related.
Snowdevil
(16 items)
 
ASUS G750JM
(9 items)
 
 
CPUMotherboardGraphicsGraphics
[i7 4790K @ 4.4 GHz (1.186v)] [Asus Sabertooth Z97 Mark S] [nVidia Geforce GTX 1080] [nVidia Geforce GTX 1080] 
RAMHard DriveCoolingOS
[G.Skill 32GB DDR3 2133 MHz] [Crucial MX100 256GB] [Phanteks PH-TC12DX] [Win 10.1 Pro] 
MonitorMonitorKeyboardPower
[LG 29UM65 (2560x1080)] [QNIX Evo II LED (2560x1440)] [WASD v2 Tenkeyless] [NZXT Hale90 v2 ] 
CaseMouseMouse PadAudio
[ThermalTake GT10 Snow Edition] [Razer Mamba - Chroma] [Razer Kabuto] [Razer Man O' War] 
CPUMotherboardGraphicsRAM
i7 4770HQ Intel HM87 Express Chipset Geforce GTX 860M 8GB DDR3L 1600 MHz 
Hard DriveOptical DriveCoolingOS
Samsung SSD EVO DVD-RW Stock Windows 8.1 
Monitor
1920x1080 TN 
  hide details  
Reply
Snowdevil
(16 items)
 
ASUS G750JM
(9 items)
 
 
CPUMotherboardGraphicsGraphics
[i7 4790K @ 4.4 GHz (1.186v)] [Asus Sabertooth Z97 Mark S] [nVidia Geforce GTX 1080] [nVidia Geforce GTX 1080] 
RAMHard DriveCoolingOS
[G.Skill 32GB DDR3 2133 MHz] [Crucial MX100 256GB] [Phanteks PH-TC12DX] [Win 10.1 Pro] 
MonitorMonitorKeyboardPower
[LG 29UM65 (2560x1080)] [QNIX Evo II LED (2560x1440)] [WASD v2 Tenkeyless] [NZXT Hale90 v2 ] 
CaseMouseMouse PadAudio
[ThermalTake GT10 Snow Edition] [Razer Mamba - Chroma] [Razer Kabuto] [Razer Man O' War] 
CPUMotherboardGraphicsRAM
i7 4770HQ Intel HM87 Express Chipset Geforce GTX 860M 8GB DDR3L 1600 MHz 
Hard DriveOptical DriveCoolingOS
Samsung SSD EVO DVD-RW Stock Windows 8.1 
Monitor
1920x1080 TN 
  hide details  
Reply
post #9 of 34
Stolen credit card used to pay for Amazon super computing? Probably used part of the GPU super computing for crypto cracking. Account shut down once bill reached tens of thousands of dollars?
post #10 of 34
Quote:
Originally Posted by RagingCain View Post
The fact that it COULD be used this way is a serious problem. This shouldn't be a perk of cloud based computing, and also leads me to believe there is some serious control issues / safe guards that should have been considered in the first place to prevent users from using the system for a nefarious means.

Essentially, Amazon could have brought down itself with enough resources at the groups disposal.
The same could be said about guns, knives, cars, really anything. Your home pc could be used for hacking. Do we need to put safe guards in so you don't become a hacker?
Small but mighty!
(13 items)
 
  
CPUMotherboardGraphicsRAM
2500k (4.4ghz @ 1.32v) Asus Maximus Gene Z EVGA GTX 580 8GB Corsair XMS3 1866mhz 9-10-9-27 
Hard DriveOptical DriveOSMonitor
intel 320 120gb ssd 1 WD 10k 300gb LG blu ray burner  Windows 7 Home Premium x64 BenQ 24" 120hz Xl2420T 
KeyboardPowerCaseMouse
Steel Series G6v2 Corsair AX750 Silverstone TJ08B-e logitech G9 
Mouse Pad
none 
  hide details  
Reply
Small but mighty!
(13 items)
 
  
CPUMotherboardGraphicsRAM
2500k (4.4ghz @ 1.32v) Asus Maximus Gene Z EVGA GTX 580 8GB Corsair XMS3 1866mhz 9-10-9-27 
Hard DriveOptical DriveOSMonitor
intel 320 120gb ssd 1 WD 10k 300gb LG blu ray burner  Windows 7 Home Premium x64 BenQ 24" 120hz Xl2420T 
KeyboardPowerCaseMouse
Steel Series G6v2 Corsair AX750 Silverstone TJ08B-e logitech G9 
Mouse Pad
none 
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Video Game News
Overclock.net › Forums › Industry News › Video Game News › [BB]Amazon Server Said to Be Used in Sony Attack