Cimm, it is really good to have you back in the Pirate Party Radio. I took about 6 weeks off posting news to Sean and other online radio shows because I was burning out from all the online time I was spending researching various things. Almost came close to starting a radio show myself because of all the same content you were seeing before you left and it has gotten significantly worse.
The Playstation Network from Sony story estimates are that about 77 to 78 million credit card, passwords, logins and other identifying information was stolen because the Network had very FEW networking monitoring, access control lists and was compromised by a simple SQL injection into a database. Reports are swirling around that this network mostly operated in a vacuum or security through obscurity type of threat modeling. In others, as little as possible was done and pile on the ca$h.
DSL Reports has a story going around, you know the infamous Broadband forums? They have a story going around that their password database was in plain TEXT and was compromised and stolen by a SQL injection scheme.
Oak Ridge National Labs (think super secret US Nuclear Labs in Tennessee) being hacked and one of their people clicked on a link and about 1/2 a terabyte of classified information was stolen before it was shut down.
I could go on and on because there are so many examples of this flagrancy running around the internet, either through ignorance, poorly trained technicians, poorly designed systems or simple human error like a secretary logging that has access to super secret level access to data or systems and with a simple spearphishing or other network attack on to access gateways or computers that have access to this level of information.
All I can say, oh boy Get ready!
MindGrinder and I are ready to flood you with stories like this.
