Lawsuit Claims Sony Canned Security Staff Just Before Data Breach 99
Stoobalou writes "A lawsuit filed this week suggests that Sony sacked a group of employees from its network security division just two weeks before the company's servers were hacked and its customers' credit card details were leaked. The suit, which seeks class action status, is being brought by victims of the massive data breach that took place in April."
Re:So they sacked them too early (Score:5, Interesting)
Or too late
Or the sacked were involved in the breach.
Who cares why they fired them- I want Sony $$ (Score:5, Interesting)
SONY and Meetings (Score:2, Interesting)
I've worked at SONY, though not in the security group. To do anything, there were at least 10 meetings to "decide to do something" followed by another 20 meetings to decide "WHAT" to do. Often, the WHAT wouldn't be possible, because the doers weren't invited.
SONY can spend lots and lots of money on things they believe will make them money and $0 on stuff that doesn't ... like security.
Where I worked was filled with IBM-Japan running AIX systems. Half of these people were really sharp and the other half, well, not so much. I never met or heard anything about the Data Security team, but that wasn't my role while I was there, so it isn't surprising.
SONY wasn't much different from any other large company that hadn't needed to worry about security previously. I bet going forward SONY will make a security review part of every project going forward. It will be a checklist item that leads to 15 other checklists.
Pick any other consumer company, perhaps Emerson or Westinghouse. Do you think they have much real data security either?