Comment Re:You can stop those type of attacks (Score 2) 343
You said "no level". Ever talked to somebody that handles highly classified data in some TLAs? No, did not think so. Sure, it is expensive, but you can keep any and all types of attackers out if you invest enough and have the right people defining processes and implementing controls, except for those attackers that can come to you and break down your door or those that can plant people with you long-term. This "there is no way to protect yourself" meme is just BS for the uninformed and has nothing to do with professional risk-management.
What Schneier is talking about is the setting of a large, commercial enterprise that must be profitable. And even there you can keep all that would find your data commercially valuable out, you just need to understand the business aspects of security. True, against resourceful fanatics, that may not be enough. But Sony did clearly not even have the basic level of protection they needed in place. My take is this was some random group of big-ego-mediocre-skill hackers that got lucky and that are now grand-standing. Remember LulzSec? If they were still active, this would be right up their alley.