Sony's problems with its PlayStation Network is likely to keep the company under the security spotlight for months to come.
And that's not a great position to be in.
The latest news on the Sony security front is barely worthy of a mention. Sony Thailand has a live phishing site on one of the company's servers. F-Secure highlighted the attack.
In the security industry figuring out what not to cover is just as important as knowing what to expand on. If F-Secure's alert wasn't attached to Sony it would merely pass by. In fact, it's a non-event.
However, Sony is under fire due to suffering a data breach and outage for its PlayStation Network (PSN). Once a company is deemed insecure it can take forever to rebound. In recent days:
- Sony shut down its PSN password system on security concerns. Sony noted that there was no hack, but it had a security hole (who doesn't?)
- Sony is giving two free games to customers, but some still feel burned.
- Japan was wary of PSN's reboot.
- And PlayStation hacker quips abound.
Simply put, Sony is taking a beating and probably will continue to do so no matter how much it apologizes, overcommunicates and offers free credit monitoring. Every potential security hole will be probed by hackers. Every small security problem will be magnified by the press. Sony is a big target and will remain so until it has perfect security. The problem: No company has perfect security, but Sony better get damn close.
Sony is retooling security processes in real-time and that takes time. Repairing the hit to Sony's reputation will take even longer.