Dear Linden,
From reading the Blog I gather that the servers were more than likely compromised on the 3rd September 2006 and that the intrusion was detected by your staff 2-3 days later. Residents (your customers) were not notified until the 8th September 2006 a delay of at least 25 but possibly upto 48 hours. Can you therefore answer this question;
1) Access to accounts with L$ in them, which therefore equals real money, was still accessible to the attackers upto 48 hours after you discovered the intrusion. How was the decision taken to allow this?
Can you also answer this question;
2) Names and addresses for upto 500,000+ people have been breached, is that correct?
Thanks for your time,
Lee Naumova
Welcome to the Second Life Forums Archive
These forums are CLOSED. Please visit the new forums HERE
Why The Wait |
|
|
Lee Naumova
Gamin Plaza Owner
Join date: 11 Oct 2005
Posts: 25
|
09-08-2006 22:48
|
|
Robin Linden
Linden Lifer
Join date: 25 Nov 2002
Posts: 1,224
|
09-09-2006 08:15
Hi Lee. The details of our decision process and what information may have been accessed are in the FAQ that was mailed to every Second Life Resident last night. Rather than paraphrase here, I'll refer you to the FAQ which I hope will answer your questions.
_____________________
|