The PS3 hacker who may have been the reason for Sony’s recent headache has chimed in.
George Hotz, the man who was embroiled in controversial Sony lawsuit over his hacking of the PS3, wrote in his blog, “I sure am glad I don’t have a PSN account about now.”
It was the lawsuit against Hotz that many suspect is the reason Sony’s online system was hacked, though Hotz himself is not assumed to have been involved.
“To anyone who thinks I was involved in any way with this, I’m not crazy, and would prefer to not have the FBI knocking on my door,” he affirmed.
It’s believed the group Anonymous, which has managed to take down some of the most powerful people in the world, was behind the massive attack that has crippled the Playstation Network for more than a week. This is the longest suspension the PS3’s online service has faced to date.
Hotz has good reason to hate Sony, and even though he doesn’t fault the entire company, he has some harsh words. “Now until more information is revealed on the technicals, I can only speculate, but I bet Sony’s arrogance and misunderstanding of ownership put them in this position. Sony execs probably haughtily chuckled at the idea of threat modeling,” wrote Hotz. “Traditionally the trust boundary for a web service exists between the server and the client. But Sony believes they own the client too, so if they just put a trust boundary between the consumer and the client(can’t trust those pesky consumers), everything is good. Since everyone knows the PS3 is unhackable, why waste money adding pointless security between the client and the server? This arrogance undermines a basic security principle, never trust the client.”
Hotz says whoever hacked Sony’s servers is in for a jail sentence, and warned them, “Don’t be a [d*ck] and sell people’s information.”