And I'm not referring to the PS3.

http://www.reuters.com/article/2011/04/27/us-sony-hacking-users-idUSTRE73Q3IS20110427

This has been all over the news today, but apparently Sony's network was hacked and millions of users' names, addresses, and credit card numbers were stolen. Have fun losing everything you've ever owned, Sony fans. To be fair though, I'm pretty sure this kind of cyber attack could have happened to anyone, Microsoft included. I can't wait to see how much mass credit card fraud results from this though, and whether Sony will reimburse their customers in any way.
>Sony PlayStation gamers expressed shock and disappointment on Wednesday at a massive data hack in which their names, addresses and credit-card details might have been stolen from the PlayStation Network.

>might have been stolen from the PlayStation Network

>might

Is there any kind of proof that someone out there has access to all of this data?
That's a good point. But if someone had access to that data, why wouldn't they take it?
I heard about this. I bet that PS3 and the other gaming companies specifically hired additional personnel to watch the networks.
Well for one, they have no clue if CC numbers were stolen, all they know is that the database what hacked, what data was actually gotten was unknown last I heard.

Besides that I doubt you will see much CC fraud from this because once they know more about what data and whose was accessed they can just inform those users so they can get issued new cards with new numbers, problem solved.
That's why the thieves need to act quickly to launder as much money as they can from those accounts. Even if they don't get much from the credit cards, they still have names and addresses they can send spam too, and those are much harder to change.
This is what happens when you make the community disappointed.
Svenne wrote:
This is what happens when you make the community disappointed.
What are you talking about? This is what happens when you have organizations that make money by acquiring personal information and using or selling it.
I thought PSN was hacked because Sony removed OtherOS?
That could be one motivation, that plus the lawsuits against people who hacked the PS3.
Svenne wrote:
I thought PSN was hacked because Sony removed OtherOS?
I seriously doubt it. Geohot claimed his work was mostly in response to the removal of OtherOS, which is why they sued him, as far as I understand, but I didn't think this attack was anything other than opportunistic. I don't think any groups in particular claimed responsibility for it...?
Someone claiming to represent Anonymous said it wasn't them. However, Anonymous isn't a structured organization that can be truly represented by any one person, it's a group people pledge allegiance to.

Anyway, does anyone else remember when this exact same thing happened to Apple? Ah those were good times...
I think the biggest risk from the PSN hacking is that a lot of people re-use UN/PW combos for a lot of things. So there's that.
I just hope my membership get's prolonged because of this; basically reimbursed for whatever I couldn't use over their unscheduled downtime.
KermMartian wrote:
What are you talking about? This is what happens when you have organizations that make money by acquiring personal information and using or selling it.


No, this is what happens when you have *HORRENDOUS* security.

1) They stored passwords in the clear
2) They stored personal information in the clear
3) They stored *credit cards* in the clear
4) They gave all developers access to *live data*
Kllrnohj wrote:
KermMartian wrote:
What are you talking about? This is what happens when you have organizations that make money by acquiring personal information and using or selling it.


No, this is what happens when you have *HORRENDOUS* security.

1) They stored passwords in the clear
2) They stored personal information in the clear
3) They stored *credit cards* in the clear
4) They gave all developers access to *live data*

I am too lazy to actually make my own post so instead I quote people and then don't say anything new.
Where are you guys getting the information about Sony's userbase information "in the clear" and how does live data affect anything?

Sony Q&A wrote:
Q: Was my personal data encrypted?
A: All of the data was protected, and access was restricted both physically and through the perimeter and security of the network. The entire credit card table was encrypted and we have no evidence that credit card data was taken. The personal data table, which is a separate data set, was not encrypted, but was, of course, behind a very sophisticated security system that was breached in a malicious attack.
Q: Was my credit card data taken?
A: While all credit card information stored in our systems is encrypted and there is no evidence at this time that credit card data was taken, we cannot rule out the possibility. If you have provided your credit card data through PlayStation Network or Qriocity, out of an abundance of caution we are advising you that your credit card number (excluding security code) and expiration date may have been obtained. Keep in mind, however that your credit card security code (sometimes called a CVC or CSC number) has not been obtained because we never requested it from anyone who has joined the PlayStation Network or Qriocity, and is therefore not stored anywhere in our system.
So this will basically have the same results as the Apple iPad leak, with users getting d!ckloads of spam mail.

EDIT- actually, if this is true, they aren't going to go after any of the players:



Video is so much win.
DShiznit wrote:
EDIT- actually, if this is true, they aren't going to go after any of the players:



Video is so much win.
Isn't that video about the DDoS that happened a while ago, not what's happening now? In that video, they said that they're going for the website, not PSN. Right now, PSN is down and the website is up.
He didn't just post the instructions on how to jailbreak the PS3, he also "publicly released details on an exploit that circumvents PS3 security protections and enables system owners to run unauthorized code." For which he was brought in, but has since reached a settlement outside of court.

http://www.gamasutra.com/view/news/34339/Geohot_Sony_Should_Have_Hired_Security_Experts_Instead_Of_Lawyers.php
  
Register to Join the Conversation
Have your own thoughts to add to this or any other topic? Want to ask a question, offer a suggestion, share your own programs and projects, upload a file to the file archives, get help with calculator and computer programming, or simply chat with like-minded coders and tech and calculator enthusiasts via the site-wide AJAX SAX widget? Registration for a free Cemetech account only takes a minute.

» Go to Registration page
Page 1 of 4
» All times are UTC - 5 Hours
 
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum

 

Advertisement