The folks over at Veracode have analyzed the recent PlayStation Network Breach and turned it into the infographic featured below. The infographic highlights events from the initial DDoS attacks and first major breach, through the many subsequent discoveries that resulted in a drop in Sony’s stock price from $36.36 at the beginning of the year, down to $24.28 on June 20th.
Veracode pegged the cost of prevention at less than $10,000, the cost for a static and dynamic application scan which could have detected the SQL injection flaws before the breach occurred. While a proper application scan could have prevented the main breach, it was clear that Sony had severe problems across many of its platforms and divisions as the infographic illustrates. It would have taken much more than a single dynamic application scan to prevent all the events listed, and much more than a single $10k investment. That being said, the cost of proper protection and application scanning done across all the affected properties such as SonyPictures.Com and others, still would have had a significant ROI considering the losses realized from the number of events.
Related Article: Static vs. Dynamic Assessment Tools: Using the Right Tools in the Right Place at the Right Time
Related Article: Static vs. Dynamic Assessment Tools: Using the Right Tools in the Right Place at the Right Time