Results 1 to 11 of 11

Japan Club Nintendo hacked...

This is a discussion on Japan Club Nintendo hacked... within the Nintendo forum, part of the Multiplatform Talk; Nintendo's Kyoto-based HQ just announced that Club Nintendo, its member rewards site, has been hacked. This was discovered when a ...

  1. #1
    DON'T BLINK
    Koimia's Avatar


    Join Date
    Sep 2011
    Location
    Sycamore, IL
    Posts
    1,361
    Reputation
    79

    Japan Club Nintendo hacked...

    Nintendo's Kyoto-based HQ just announced that Club Nintendo, its member rewards site, has been hacked. This was discovered when a large number of access errors began appearing on July 2. That's when Nintendo began investigating the issue.

    According to Nintendo's investigation, there were 23,000 unauthorized log-ins (with 15 million attempts) between June 9 and July 4 on Japan's Club Nintendo site. This does not seem to apply to Club Nintendo sites in other countries.

    In Japan, it's possible that Club Nintendo members' full names, home addresses, phone numbers, and mail addresses were compromised. Credit cards, however, are not used with Club Nintendo, so thankfully, that's not an issue.

    Currently, Nintendo is strengthening its security. Old passwords are currently invalid, and Nintendo is asking Club Nintendo members to change their passwords via email.

    In Japan, Nintendo Was Hacked


    edit: so it takes Nintendo almost a whole month before catching a hack? where is the hate? the backlash? where is Ps360?

    ( thanks djunglist for this awesome GDT sig)

  2. #2
    Kiwi Defender
    Nagflar's Avatar


    Join Date
    Sep 2011
    Location
    Vice City
    Posts
    6,096
    Reputation
    342

    Good thing that thing isn't a full-fledged network that includes credit card numbers and/or really important information (although addresses are important), or this could've been terrible for some peeps.

    I wonder how they pulled it off without Nintendo noticing, though.

    Toggle Spoiler


    Social Group of the Year (2011, 2012): Platboy Online.
    Sig by Ramon, so praise the crap out of him.
    My posts can be humorous or serious, but it's up to you to decide which posts are which.

  3. #3
    DON'T BLINK
    Koimia's Avatar


    Join Date
    Sep 2011
    Location
    Sycamore, IL
    Posts
    1,361
    Reputation
    79

    I'd consider my home address and phone number pretty damn important. Not as much as a credit card, but still

    ( thanks djunglist for this awesome GDT sig)

  4. #4
    INTJ
    Ps360's Avatar


    Join Date
    Sep 2011
    Posts
    11,663
    Reputation
    299

    karma for having the better prizes.




    "Never forget what you are. The rest of the world will not. Wear it like armor, and it can never be used to hurt you."

  5. #5
    The One and Only
    DaRe_xLw's Avatar


    Join Date
    Sep 2011
    Location
    Inglewood, CA
    Posts
    5,241
    Reputation
    478

    At least the credit card numbers weren't compromise, that's a plus. But still, a month of that is pretty bad. :/

    Siggin' since June 2012 | Sig Made by Me | Platcard made by djunglist
    DaRe's Journey of Art
    Drawings on first post, sig showcase on second.

    DaRe's Adventures v5.20
    My Trophy Checklist back in contruction!

    Free-Style Signature Request Shop
    My sig shop with knuckle and Bladia, currently taking requests!

    DareCity701
    My dA account.

    My YouTube Channel

    Please subscribe today!

    Requests Due: 0
    Collabs Due: 0

  6. #6
    INTJ
    Ps360's Avatar


    Join Date
    Sep 2011
    Posts
    11,663
    Reputation
    299

    the more i read about this the more it seems less like a hack and more like a bruteforce attack.

    Get a set of passwords stolen from another major site then run it with a bunch of account names till one breaks into a account.




    "Never forget what you are. The rest of the world will not. Wear it like armor, and it can never be used to hurt you."

  7. #7
    illegal in 9 countries
    ant1th3s1s's Avatar


    Join Date
    Sep 2011
    Location
    Ōsutoraria
    Posts
    3,670
    Reputation
    568

    15 million bruteforce login attempts should have raised a red flag far earlier than a month. Piss-poor security Nintendo.

    PSN | Steam | XBL | Wii U | 3DS | iOS | OUYA : ant1th3s1s | Checklist of the Year (2012,2013)

  8. #8
    INTJ
    Ps360's Avatar


    Join Date
    Sep 2011
    Posts
    11,663
    Reputation
    299

    Quote Originally Posted by ant1th3s1s View Post
    15 million bruteforce login attempts should have raised a red flag far earlier than a month. Piss-poor security Nintendo.
    every site is victim to it.

    if it blocks you from that ip from logging in doesn't actually matter if you have a bunch of zombie computers to use.




    "Never forget what you are. The rest of the world will not. Wear it like armor, and it can never be used to hurt you."

  9. #9
    illegal in 9 countries
    ant1th3s1s's Avatar


    Join Date
    Sep 2011
    Location
    Ōsutoraria
    Posts
    3,670
    Reputation
    568

    Quote Originally Posted by Ps360 View Post
    every site is victim to it.

    if it blocks you from that ip from logging in doesn't actually matter if you have a bunch of zombie computers to use.
    I can detect a bruteforce attack on a site within minutes if not seconds, and can shut down a bruteforce attack automatically. Why can't Nintendo? Because they didn't setup intrusion detection systems, that's why.

    If you're on the internet, bruteforce attacks come with the territory. They should have learnt from the experience of their competitors and implemented systems before it became a problem, not after.

    PSN | Steam | XBL | Wii U | 3DS | iOS | OUYA : ant1th3s1s | Checklist of the Year (2012,2013)

  10. #10
    DON'T BLINK
    Koimia's Avatar


    Join Date
    Sep 2011
    Location
    Sycamore, IL
    Posts
    1,361
    Reputation
    79

    Quote Originally Posted by ant1th3s1s View Post
    I can detect a bruteforce attack on a site within minutes if not seconds, and can shut down a bruteforce attack automatically. Why can't Nintendo? Because they didn't setup intrusion detection systems, that's why.

    If you're on the internet, bruteforce attacks come with the territory. They should have learnt from the experience of their competitors and implemented systems before it became a problem, not after.
    Argue all you want, Ps360 has their head so far up Nintendo's ass that they can look out the mouth. You know if this was Sony again you'd never hear the end of it

    ( thanks djunglist for this awesome GDT sig)

  11. #11
    Kiwi Defender
    Nagflar's Avatar


    Join Date
    Sep 2011
    Location
    Vice City
    Posts
    6,096
    Reputation
    342

    Quote Originally Posted by Koimia View Post
    Argue all you want, Ps360 has their head so far up Nintendo's ass that they can look out the mouth. You know if this was Sony again you'd never hear the end of it
    Just like many people here won't stop talking about this just to try to piss Ps360 off. I wonder who's thicker than a rock in that case.

    Toggle Spoiler


    Social Group of the Year (2011, 2012): Platboy Online.
    Sig by Ramon, so praise the crap out of him.
    My posts can be humorous or serious, but it's up to you to decide which posts are which.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  


All times are GMT -5. The time now is 10:07 AM.
Powered by vBulletin® Version 4.1.10
Copyright © 2014 vBulletin Solutions, Inc. All rights reserved.
Search Engine Optimization by vBSEO