Sony PlayStation hack: welcome to the modern world

The cyber-intrusion highlights a worrying trend. Are the bad guys winning?

News that Sony has brought in external investigators after the personal information of more than 100 million Sony online gamers was compromised in hacker attacks highlights a sombre reality: not even one of the world's most sophisticated technology companies can outwit the hackers in 2011.

Online gamers' disappointment at being denied access to Sony's PlayStation Network and Qriocity service while the hacks were investigated – robbing them of the privilege of being able to blast each other to bits in cyberspace – quickly turned to anger as Sony announced just what sort of information the hackers are thought to have gained access to. As the company put it:

We believe that an unauthorised person has obtained the following information that you provided: name, address (city, state/province, zip or postal code), country, email address, birthdate, PlayStation Network/Qriocity passwords and login and handle/PSN online ID. It is also possible that your profile data, including purchase history and billing address (city, state, zip), and your PlayStation Network/Qriocity password security answers may have been obtained. If you have authorised a sub-account for your dependent, the same data with respect to your dependent may have been obtained. While there is no evidence that credit card data was taken at this time, we cannot rule out the possibility.

At least one lawsuit has already been launched in the US by a PSN user who claims Sony did not do enough to protect the private data of its customers, and the attorney generals for four US states have begun looking into the attack.

Here in the UK, the Information Commissioner, Christopher Graham, appears to be taking a strong stance for a change. He told BBC Radio 4's You and Yours programme that the matter looked like "a very significant breach of data protection law", though he will only be able to hit Sony with his potential fines of up to £500,000 if at least some of the compromised PSN data was stored in the UK.

Even then, while fines are all well and good, locked stable doors and bolting horses come to mind. Fining Sony will do nothing to reduce the risk of identity theft or fraud now faced by users of the PSN or Qriocity services, who Sony has kindly suggested should "remain vigilant to review your account statements and to monitor your credit or similar types of reports".

Missing and action

Identity theft is a real and growing problem. According to CIFAS, the UK's fraud prevention service, identity fraud increased by almost 10 per cent in the first nine months of 2010 compared to the same period in 2009. The number of victims of impersonation rose by 18.4 per cent.

It's easy to blame corporations like Sony for not investing in adequate security measures. But the hacking of servers run by the security firm RSA in March showx just how capable the bad guys – the hackers – are today.

RSA is not just a security specialist. Its authentication technology is specifically geared towards keeping the bad guys out of corporate networks, yet it still had to own up to a severe breach of its defences which could have compromised the security of authentication systems used by 40 million employees to access sensitive networks, both corporate and government.

The UK government has by no means an unblemished security record. In November 2007 two disks holding the personal details of all families in the UK with a child under the age of 16 went missing. The Child Benefit data on them included name, address, date of birth, National Insurance number and, where relevant, bank details of 25 million people. The then chancellor, Alistair Darling, said there was no evidence that the data had gone to criminals, but urged people to monitor their bank accounts for unusual activity.

In September 2008, the Insolvency Service said the names, addresses and bank details of up to 400 directors of 122 firms were lost after four laptops were stolen. That same month, the Service Personnel and Veterans Agency lost three USB portable hard drives with details of 50,500 staff. A month later, the Ministry of Defence said that a hard drive being held by a contractor, containing 1.7 million records, was missing.

Hacked off

Insider threats and good old-fashioned carelessness are nothing new, and won't stop until people stop being human. Encryption and data loss prevention (DLP) technologies have come a long way, but there is no such thing as "100 per cent secure", and no technology in the world can prevent a malicious insider with the right level of access privileges from helping himself to a little sensitive data.

Yet the Sony and RSA hacks are more worrying, if anything, than a lost or stolen memory stick or laptop. These are the ominous signs that the bad guys - increasingly so, it seems - are outsmarting what should be some of the most secure defences.

As Andy Cordial, managing director of the secure storage systems firm Origin Storage, puts it: "There have been hacks of several corporates in recent weeks. Regardless of what caused these incursions, it is now clear that the database security systems in active use on both sides of the Atlantic are no longer sufficient."

Or, to put it another way: right now, the bad guys are winning.

Jason Stamper is technology correspondent of NS and editor of Computer Business Review.

Jason Stamper is editor of Computer Business Review

Bennett Raglin / Getty
Show Hide image

How gendered are this year’s most popular Christmas present toys?

Meet the groups fighting back against the gendering of children’s toys over the festive season.

You’re a young girl. You go into WH Smith’s to pick out a colouring book for Christmas. You could buy the Girls’ World Doodling and Colouring Book, a "gorgeous gift for any girl". In this, the pictures range "from flowers, fans, feathers, to birds, buttons and butterflies". Or Colouring for Girls: Pretty Pictures to Colour and Complete, where you can colour in "beautiful birds, seashells, cupcakes, pretty patterns and lots more". The counterpart Boys’ Colouring Book has a range beyond buttons and feathers: "Planes, trains and automobiles – plus the odd alien spacecraft".

In the run-up to Christmas, this kind of gendered marketing is rife, particularly finding its way into the predominantly pink colour scheme of girls’ toys.

Take Amazon’s page "2016 Toys for Girls": a pink icecream trolly set, a pink light-up tablet, pink building blocks, pink and purple friendship bracelets and so on.

There are several groups taking action against the "pinkification" of children’s toys. One of these is Let Toys Be Toys, a group that targets large supermarkets with the aim of reducing the gendered marketing used on children’s goods.

The Let Toys Be Toys blog focuses on specific examples of targeted gendering within shops, catalgoues and online. A particularly revealing example of how prevalent this has become in recent years is in two pictures published from the Argos catalogue, one from the Seventies, and one from nowadays. The eye-wateringly pink page from now makes the 1970s page look dour by comparison. The lack of change over four decades of what kind of products are marketed at girls is equally striking:

Despite the efforts of campaign groups such as Let Toys Be Toys, the prevalence of gendering within the highest-rated children's gifts for 2016 is staggering.

Look no further than the Ultimate Christmas Gifts Guide from Toys R Us. One of the most immediately obvious examples is the way in which the pink/blue colour schemes are used to market identical products. This is repeated again and again:

This identical drawing board is uniquely packaged to the binary colour codes that are so common within children's toys stores.

The same applies with this keyboard, where the young girl and boy are pictured almost identically, save for the coordination of their clothes to the colour of their toys.

The message is a hugely limiting one: one that allows little movement away from the binary of pink/blue. The effects of this are longstanding. A recent poll from YouGov shows that "only a third of parents approve of boys playing with Barbies". The data goes on to explain that "while most parents approve of girls playing with toys marketed to boys, a minority of adults approve of the opposite".

Images like this were the inspiration behind Let Toys Be Toys, back in 2012. The campaign began on Mumsnet, the forum for parents, on a section called "AIBU", which stands for "Am I Being Unreasonable?". One parent posted the question: "Am I being unreasonable to think that the gendered way that children’s toys are marketed has got completely out of hand?" The heated discussion that followed led to a sub-section with the founding memebers of Let Toys Be Toys.

This aside, Let Toys Be Toys has made signifcant progess since it began. It targets large stores, focusing on gendered signage both in store and online. In their four years, they have campaigned for signs like "girls' toys" and "boys' toys" to be removed from retailers such as Boots, Debenhams, Morrisons, Toys R Us and TK Maxx. It is the go-to hashtag on Twitter for examples of the often shocking gendering of children’s toys.

"This is ostensibly about toys, but what we’re really talking about is gender stereotypes that shape our children’s worlds in an apparently very unassuming way," says Jess Day, a Let Toys Be Toys campaigner. "It seems very innocent, but actually what we’re doing is giving children very clear instructions about how to be a man and how to be a woman."

These clear instructions work beyond colour coordination: where girls are sold the image of the pink "girly girl", for instance. This is evident in children’s fancy dress costumes. Early Learning Centre’s (ELC) children’s fancy dress range imposes very rigid gender roles. To give examples from the current christmas range:


Credit: ELC

Again, the predominant colour sceme is pink. The roles offered are mainly fairies and princessess: generally make-believe.

“I found it really interesting that there were almost no ads showing girls doing anything," comments Day. "Physically they were very passive. The only physical activity we saw girls doing was dancing. They weren't really moving around much."


Image: ELC

By contrast, young boys are offered the possibility of pretending to be a firefighter, a policeman or a doctor, among other practical, professional roles.

This year's Toys R Us Christmas advert follows on from this, with girls mainly dressed as princesses, and boys dressed as knights and kings. Much like the pink/blue colour scheme that we see all over children's shops, these fancy dress costumes create an unnatural binary. They send out a message that restricts any kind of subversion of these two supposedly polar opposites.

What's more, the subtext is one that is deeply rooted in expectations, building up a picture where careers such as that of a policeman and fireman come more naturally to boys, who have been socialised into these roles from childhood through fancy dress costumes of this type. Instead, girls are later forced to learn that most of us aren't going to become princessess, and none of us fairies – and so the slow process begins to unlearn these expectations.

There are certainly groups who try to counteract this. Manufacturers such as the toy brand IamElemental aims to break down the gendered distinctions between boys' toys and girls' toys, by creating female action figures.

“We always say that we are not anti-doll or anti-princess, but that if you give a girl a different toy, she will tell a different story," says Julie Kershaw, a member of the organisation. "As the mom of two boys, I always say that it’s just as important to put a strong healthy female action figure in a boy’s hand as it is a girl’s”.

Like the campaigners behind Let Toys Be Toys, IamElemental sees children’s toys as the starting point.

“We want kids – both girls and boys  – to internalise these messages early and often,” says Kershaw. “While there are certainly biological differences between girls and boys, gender-specific toys are not a biologically dictated truth. Toys are not “for girls” or “for boys”  – toys are for play; for exploration and creative expression.”

This attitude is ingrained in a child’s early years. Only through reconfiguring the gender sterotypes of the toys we buy for our children can we begin to break down their expectations of how to behave in age. We challenge you this Christmas to avoid these highly gendered products. Below are our three favourite Christmas presents for children this year, for girls AND boys, as approved by Let Toys Be Toys:

Mini Table Tennis (£7.99)


From: The Little Toy Box

Djeco Intro to Origami - Animals (£3.99)

From: Rachel's Toy Shop

Seedling Make Your Own Dino Softie! - Dino(sew)or Kit (£5)


From: Gifts For Little Ones