Sony to appeal £250,000 fine for hack into PlayStation Network

Sony PlaySation: Sony fined £250,000 for hack into the network
Sony PlaySation: Sony fined £250,000 for hack into the network

Sony Computer Entertainment has been fined £250,000 for a hack on its PlayStation Network that compromised the personal details of millions of its users.

The decision is being disputed by Sony, which is planning an appeal after "strongly disagreeing" with the ruling by the Information Commissioner’s Office (ICO).

Sony is objecting to the fine, citing that the ICO admitted the hack in 2011 was a determined criminal attack, that there was "no evidence that encrypted payment card details were accessed" and "personal data is unlikely to have been used for fraudulent purposes".

A Sony spokesman said: "Criminal attacks on electronic networks are a real and growing aspect of 21st century life and Sony continually works to strengthen our systems, building in multiple layers of defence and working to make our networks safe, secure and resilient."

The ICO imposed the fine after ruling that Sony breached the Data Protection Act by not putting sufficient safeguards in place to protect users of the Sony PlayStation Network.

Sony was victim to Distributed Denial of Service (DDoS) attacks in April of 2011 that also compromised information including the passwords, names, addresses, email addresses, and dates of birth of PlayStation Network users.

Although there was no evidence encrypted payment card details were accessed, Sony was reprimanded because details including passwords will have been used by people to control other online accounts and services.

The investigation found the attack could have been prevented if Sony had updated its software, while the electronics firm was also guilty of not anticipating an attack on systems, despite being subject to server DDoS attacks before the April 2011 incident.

David Smith, deputy commissioner and director of data protection at ICO, said: "If you are responsible for so many payment card details and log-in details, then keeping that personal data secure has to be your priority. 

"In this case, that just didn't happen, and when the database was targeted – albeit in a determined criminal attack – the security measures in place were simply not good enough.

"There's no disguising that this is a business that should have known better. It is a company that trades on its technical expertise, and there's no doubt in my mind that they had access to both the technical knowledge and the resources to keep this information safe."

Discussion

Before commenting please read our rules for commenting on articles.

If you see a comment you find offensive, you can flag it as inappropriate. In the top right-hand corner of an individual comment, you will see 'flag as inappropriate'. Clicking this prompts us to review the comment. For further information see our rules for commenting on articles.

comments powered by Disqus
Brand Republic Jobs

subscribe now

Latest

John Lewis walks consumers through its history to celebrate 150 years of business
Waitrose boosts content strategy with 'Weekend Kitchen with Waitrose' C4 tie-up
Hottest virals: Cute puppies star in Pedigree ad, plus Idris Elba and Fruyo
Amnesty International burns candles to illuminate new hope
Toyota achieves the impossible by calming angry Roman drivers
Tom of Finland's 'homoerotic' drawings made into stamps
YouTube reveals user habits to appeal to 'older' marketers
Ex-M&S marketing chief Steven Sharp consulting at WPP
Wolff Olins reveals new CEO after Apple poaches Karl Heiselman
Glasgow offers £30,000 prize to best digital idea for 2014 Commonwealth Games
Google's revenues surge but shares drop as it grapples with transition to mobile
Facebook beats Twitter to most 'marketing friendly' social media site crown, says DMA
Fableists believe children like Finn should be outdoors enjoying life
Homebase, Baileys and Camelot join the line-up at Media360
MasterCard renews Rugby World Cup sponsorship to push cashless message
Lynx unleashes £9m 'Peace invasion' campaign
Social Brands 100 Youth: Pizza Hut most social youth brand in UK
Cheryl Cole is wild and arresting in new L'Oreal work
Morrisons told not to show alcohol ads during YouTube nursery rhymes
O2 head of brand Shadi Halliwell departs after 23 years at company in restructure
Tesco hit by further sales decline as it turns to digital Clubcard and social network
Branding guru Wally Olins dies aged 83
Duracell short film captures epic Transatlantic voyage
Ash runs Tinder experiment to show smokers are less desirable to opposite sex
British Airways teams up with Gerry Cottle Jnr for summer of rooftop film screenings
Arklu says 'girls can be superheroes too' with doll design competition
Coke enters squash market with Oasis Mighty Drops
Virgin Galactic signs up Land Rover as space flight sponsor
Motorola marketer Andrew Morley departs as Google gears up for sale to Lenovo
US Airways apologises after tweeting obscene image at a customer