Ask HN: Why do Hackers always (it seems) go after Sony?

Hackers are always going after everyone. A lot of the vulnerability detection is automated, so really if you are vulnerable it&#x27;s only a matter of time before you are exploited, and if you are a juicy target that timeframe is probably hours, not days.<p>Sony just seems to have more high-profile cases than others. Media companies tend to have a pretty devil-may-care relationship with security, and Sony has also done a few things in the past to earn people&#x27;s ire.

If you read the news, others have been hacked too like Home Depot, Target, etc.<p>Perhaps it is you focusing on Sony that is the issue, since others are getting hacked as well?

Ok, here are just two items of recent history:<p><a href="http://en.wikipedia.org/wiki/Sony_BMG_copy_protection_rootkit_scandal" rel="nofollow">http:&#x2F;&#x2F;en.wikipedia.org&#x2F;wiki&#x2F;Sony_BMG_copy_protection_rootki...</a> and <a href="https://www.schneier.com/blog/archives/2005/11/sonys_drm_rootk.html" rel="nofollow">https:&#x2F;&#x2F;www.schneier.com&#x2F;blog&#x2F;archives&#x2F;2005&#x2F;11&#x2F;sonys_drm_roo...</a><p><pre><code> In the days after the rootkits were exposed, Thomas Hesse, president of Sony&#x27;s global digital business, was quoted on NPR as saying, &quot;Users don&#x27;t know what a rootkit is, so why should they care about it?&quot; </code></pre> <a href="http://en.wikipedia.org/wiki/PlayStation_Network_outage#Criticism_of_Sony" rel="nofollow">http:&#x2F;&#x2F;en.wikipedia.org&#x2F;wiki&#x2F;PlayStation_Network_outage#Crit...</a><p><pre><code> Credit card data was encrypted, but Sony admitted that other user information was not encrypted at the time of the intrusion.[44][58] The Daily Telegraph reported that &quot;If the provider stores passwords unencrypted, then it&#x27;s very easy for somebody else – not just an external attacker, but members of staff or contractors working on Sony&#x27;s site – to get access and discover those passwords, potentially using them for nefarious means.&quot;[59] On May 2, Sony clarified the &quot;unencrypted&quot; status of users&#x27; passwords, stating that:[60] While the passwords that were stored were not “encrypted,” they were transformed using a cryptographic hash function. There is a difference between these two types of security measures which is why we said the passwords had not been encrypted. But I want to be very clear that the passwords were not stored in our database in cleartext form. </code></pre> Bottom line is that Sony haven&#x27;t helped themselves in the last few years. Whilst they build pretty good hardware, building software systems (especially to support things like the Playstation) isn&#x27;t their forté. Worse is that when they do screw up, they are arrogant and disrespectful to their customers.<p>Their arrogance has irked a generation of hackers and script kiddies, who see Sony as a carte blanche target. The recent hack shows both their arrogance and negligent attitude to the security of their customer and private company data. Investors should be punishing Sony and calling for the heads of the board.