News - Nintendo website hacked

[HEXUS]

No corporate or customer data compromised.

Read more.

[watercooled]

I think they're doing Nintendo a favour then, pointing out what what their devs missed and hopefully this is another nudge to ensure companies have proper measures in place and remember to install critical updates.

[crossy]

LulzSec stated on Twitter that: "We're not targeting Nintendo...we sincerely hope Nintendo plugs the gap." The group also confirmed Nintendo's claims that no important data was lost in the breach stating "we just got a config file and made it clear that we didn't mean any harm. Nintendo had [sic] already fixed it anyway." We'll leave it open for debate whether the definition of 'harm' should exclude unauthorised access to web servers.

Well, I'm firmly of the opinion that unless there was 'damage' (including dissemination of confidential data to 3rd parties) then there's been no harm, and especially if there's been a fault report put into the website's owners. In this event LulzSec appear to have done a free pen test on Nintendo's website! I'm well aware that there's others (mainly politicians) who regard penetration of a website - whatever the reason and result - as a criminal activity to be punished severely.

Of course, even if Nintendo isn't a target to this group of hackers, there's nothing to stop other parties from trying their hands at breaching Nintendo's defences.

Hopefully LulzSec have pointed Nintendo towards what's wrong with their site, in which case that's one less hole for the less responsible to find.