Around 11 a.m., Sony Computer Entertainment’s Developer Network Source Code was hacked and uploaded to several file sharing websites by a group of hackers known as Lulz Security (LulzSec) under the Twitter name @LulzSec.
One member of the group, Robert Cavanaugh, was apprehended and taken into custody by the FBI after an apparent counter hack, according to an internal chat log from their private IRC server, posted through SecList, a network mapper website.
The developer network source code leaked by the group on June 6 is principally the design recipe for the resource network where developers embed their programming, like PlayStation games. With it, hackers would be able to make changes to it, reverse-engineering the network and creating duplicates or different versions.
They would also be able use the source code to find holes in the system and exploit them, wreaking further havoc on Sony’s already battered network security team.
Although previous hacks into the network allowed many people to illegally download games for free and access Sony programming resources, it is possible that with the source code, a hacker could potentially duplicate a form of the network so that he would have constant real time access to it.
LulzSec has been targeting Sony in particular due to legal action that Sony took in January against hacker George “GeoHot” Hotz for jailbreaking the PlayStation 3 system.
LulzSec, among other individual hackers, have compromised Sony computer networks multiple times in the past few weeks following the highly publicized PlayStation Network hack.
They recently breached Sony Pictures and stole 150,000 records, claiming they had access to a database with more than 4.5 million records. LulzSec stated “SonyPictures.com was owned by a very simple SQL injection, one of the most primitive and common vulnerabilities, as we should all know by now. From a single injection, we accessed EVERYTHING. Why do you put such faith in a company that allows itself to become open to these simple attacks?”
The recent hack is also significant in that it comes only a day before the Electronic Entertainment Expo in Los Angeles in which Sony is expected to publicly and directly apologize for their response to the PSN and Qriocity breach in April, while also introducing new technology and products.