PSN Down and Out

Another news:

PlayStation Network News of the Day: Things just keep getting worse for Sony and PlayStation Network gamers. The latest word from the “internet underground” is that the PSN hackers stole 2.2 million credit card numbers in last week’s breach.

Security researchers say the credit card database may be up for sale for more than $100,000. Apparently, the hackers have even brazenly offered to sell the data back to Sony, but they haven’t received a response.

At this point, these reports are based on message board braggadocio, and nobody has been able to independently confirm them. Some forum posters had details about Sony’s security, though, so there’s a non-zero chance their claims are legit.

Sony says there’s no evidence their credit card table was stolen, and that the data is encrypted anyway. That’s cold comfort for angry PS3 owners who think Sony waited too long to warn them about the breach.
Click to expand...

http://geeks.thedailywh.at/2011/04/29/playstation-network-news-of-the-day-2/
 
You're defending Sony pretty hard there Dynasty, but as much as you say, "Consumers are retarded and they don't understand these things take time," Sony should have alerted people about an external breach sooner than six days from when it happened. "Oh, no, they were trying to avoid panic and the rumor mill," are you serious? If your financial data was in jeopardy you wouldn't want to be told to sit with your thumb up your ass and calmly wait until they figure out how the hackers got in, how long they were in there for, etc. You let people know, "We had an external intrusion on the Playstation Network. While we are not sure as to the extent of the breach, we are advising caution and suggest that users change their passwords and keep an eye on their financial statements."

Hell, they were boned anyway. If PR released a statement that turned out to be a false alarm (or not as serious), then yes, users would be mad, but at least in the long run nothing was really affected. What ACTUALLY happened caused more harm to Sony than if they'd gone that route. They were damned if they did, damned if they didn't, but at least if they did it would've come off as Sony trying to protect the consumer's interests and data in the quickest manner possible. As it stands, it looks like they were inept and trying to cover their screw-up.
 
Sony Corp's No.2 Kazuo Hirai will brief media on Sunday about a huge security breach of its PlayStation Network, the first time an executive of the Japanese electronics giant will publicly address the case, which could prompt global legal actions.

Hirai, in line to succeed CEO Howard Stringer, will hold a news conference in Tokyo at 2:00 p.m. (1 a.m. EDT) on Sony's investigation of the case, its information management system and the schedule to resume services, the firm said in a news release on Saturday.
Click to expand...

Sauce
 
Even if Sony didn't know what had happened, surely if there's the slightest possibility that consumer information is at risk they should notify people ASAP.
 
morgs said:
Even if Sony didn't know what had happened, surely if there's the slightest possibility that consumer information is at risk they should notify people ASAP.
Click to expand...

This.

Sony should have seen this coming. Their PSN is not a closed network like Xbox Live. Their network is full of holes like Swiss cheese. Outside intrusion was bound to happen
 
While there is no evidence at this time that credit card data was taken,
Click to expand...
Oh really now Sony?
http://news.yahoo.com/s/pcworld/20110430/tc_pcworld/playstationnetworkusersreportingcreditcardfraud
PlayStation Network Users Reporting Credit Card Fraud
Click to expand...
So Sony is going to give you a month of free Premium service (yay free music videos and free music). :upstare: *Oh wait my bad. Free music that is completely cruddy and "selected content" from Sony aka new bands that completely suck but Sony always signs their record deals? :LOL:
 
And here I thought Sony was finished digging themselves a grave.
 
I'm a little disappointed. Why not give like $30 of PSN credit?
 
Seriously. They could've at least given us a few free game--

Oh.
 
I just want however many days this was down added to my PS+ sub time, I don't think thats too much to ask for...
 
All PSN+ members get 30 days added free ontop of their current subscription.

It's quite a nice move by Sony me thinks.
 
We have had to take the SOE service down temporarily. In the course of our investigation into the intrusion into our systems we have discovered an issue that warrants enough concern for us to take the service down effective immediately. We will provide an update later today (Monday).
Click to expand...

What makes this particularly odd is that until today, Sony has claimed that SOE servers were safe, thanks to keeping its services and databases separate from those of PlayStation Network.
Click to expand...
http://www.shacknews.com/article/68293/sony-online-entertainment-pulled-due

jlp_facepalm.jpg
 
If I had been drinking something five seconds ago, I'd need a new monitor. This is ridiculous.
 
Combine Hybrid said:
This.

Sony should have seen this coming. Their PSN is not a closed network like Xbox Live. Their network is full of holes like Swiss cheese. Outside intrusion was bound to happen
Click to expand...

The funny thing about this is, I have heard a rumor that the person just walked in to sony, sat at a terminal and got the information.

I'm not sure how true that is, but it's ****ing hilarious if it is.
 
how hard would it be to just set up a separate chat channel with limited access to the network? you think by now they'd be rolling out a little more features

edit: just read this!

Are you starting to feel bad for Sony yet? No? Maybe this will change your mind. Sony Online Entertainment has, apparently, been the victim of another breach that has, according to Nikkei.com, resulted in the release of 12,700 credit card numbers -- and presumably some other information as well. 4,300 of those credit card numbers are said to be Japanese, but no saying how many are American. Thankfully, data is said to be from 2007, minimizing the number of still-valid credit cards exposed making us wonder if perhaps this wasn't some sort of backup that was exposed. Regardless, SOE's online services were taken offline earlier today and, well, now we know why. We're presently expecting further information from the company but, until then, feel free to continue cowering in the corner and quietly sobbing onto your compromised credit cards.

[Warning: subscription required]
Click to expand...
http://www.engadget.com/2011/05/02/sony-woes-continue-as-soe-confirms-data-breach/
 
Kickin' 'em while they're up, and kickin' 'em while they're down...

Though why are they backing up CC #'s from over four years ago? Is it regulatory to do so?
 
Personally I just want to know why someone is being such ****ing douchebag. Yes, they hurt the company but they have to realize that they are hurting their peers/fellow gamers as well!!! WTF??
 
They don't want material about Old World Blues to see the day.
 
24.6 million accounts may have been breached.
Click to expand...
Now I'm scared that since I tried a Star Wars MMO back who knows when, that my identitiy is stolen. I mean it's just a trial. Just how long were they in the SOE network as well?! I MEAN WTF SONY!
 
Dynasty said:
All PSN+ members get 30 days added free ontop of their current subscription.

It's quite a nice move by Sony me thinks.
Click to expand...
Absolutely. Knowing a company was reckless with their security and as a result has lead to all your personal information is being sold to the highest bidder for identity theft in Somalia, with the potential of credit card fraud (or the hassle of you needing to cancel the card and reorder one). I would definitely be happy with 30 days free of a subscription, in fact this meagre compensation has made me completely forget about those worries. Ahhh what a wonderful world.......oh yeaaaaaaah.
 
30 days is more than you lost while it was down, assuming your details are safe that is.
 
had some really pissed off customers today who bought a laptop to stream netflix because they didn't understand why the PSN was down... poor folks who don't follow the industry are just getting boned. I told her to check her with her credit card company, etc and she was very grateful but panicked. ugh - **** you Sony.
 
morgs said:
30 days is more than you lost while it was down, assuming your details are safe that is.
Click to expand...

Uh, your details are in the hands of a hacker who will sell it off to people who want to use your information to steal shit. So I don't know why you'd "assume" that anybody's details are safe.
BabyHeadCrab said:
had some really pissed off customers today who bought a laptop to stream netflix because they didn't understand why the PSN was down... poor folks who don't follow the industry are just getting boned. I told her to check her with her credit card company, etc and she was very grateful but panicked. ugh - **** you Sony.
Click to expand...

Whats even funnier is that Netflix still works without psn, it just gives you two warnings that the psn is down and then lets you continue using netflix. I watched some Firefly episodes on it last night. GG idiot consumers.
 
well i've just been to my bank bout the PSN thing and they said not to worry surprisingly =/

They've had no reports of anyone having fraudulent purchases made over this and they don't see it as worth the hassle for them or myself to change all my accounts and standing orders over this. Of course they reassured me saying if anything were to happen then i'd be reimbursed and my accounts would be changed immediately. I feel kinda better now =)
 
I cancelled current cards anyways..never know when they may try to use them.
 
AHA-Lambda said:
well i've just been to my bank bout the PSN thing and they said not to worry surprisingly =/

They've had no reports of anyone having fraudulent purchases made over this and they don't see it as worth the hassle for them or myself to change all my accounts and standing orders over this. Of course they reassured me saying if anything were to happen then i'd be reimbursed and my accounts would be changed immediately. I feel kinda better now =)
Click to expand...
You would be safe because most banks comply with the FDIC meaning that your money will always be tied to the USA goverment. It's the main reason also to have a bank account and not put your money under your mattress. Still though, be cautious.
 
i'm from the Uk actually but i bet there is a uk equivalent anyways
 
New blog post on Sony's response to the House of Reps. Reveals quite a lot including an intrusion into SOE servers by Anonymous.

Today, the Subcommittee on Commerce, Manufacturing and Trade of the U.S. House of Representatives Committee on Energy and Commerce held a hearing in Washington, DC on “The Threat of Data Theft to American Consumers.”

Kazuo Hirai, Chairman of the Board of Directors of Sony Computer Entertainment America, submitted written answers to questions posed by the subcommittee about the large-scale, criminal cyber-attack we have experienced. We wanted to share those answers with you (click here).

In summary, we told the subcommittee that in dealing with this cyber attack we followed four key principles:

1. Act with care and caution.
2. Provide relevant information to the public when it has been verified.
3. Take responsibility for our obligations to our customers.
4. Work with law enforcement authorities.

We also informed the subcommittee of the following:

* Sony has been the victim of a very carefully planned, very professional, highly sophisticated criminal cyber attack.
* We discovered that the intruders had planted a file on one of our Sony Online Entertainment servers named “Anonymous” with the words “We are Legion.”
* By April 25, forensic teams were able to confirm the scope of the personal data they believed had been taken, and could not rule out whether credit card information had been accessed. On April 26, we notified customers of those facts.
* As of today, the major credit card companies have not reported any fraudulent transactions that they believe are the direct result of this cyber attack.
* Protecting individuals’ personal data is the highestpriority and ensuring that the Internet can be made secure for commerce is also essential. Worldwide, countries and businesses will have to come together to ensure the safety of commerce over the Internet and find ways to combat cybercrime and cyber terrorism.
* We are taking a number of steps to prevent future breaches, including enhanced levels of data protection and encryption; enhanced ability to detect software intrusions, unauthorized access and unusual activity patterns; additional firewalls; establishment of a new data center in an undisclosed location with increased security; and the naming of a new Chief Information Security Officer.

We told the subcommittee about our intent to offer complimentary identity theft protection to U.S. account holders and detailed the “Welcome Back” program that includes free downloads, 30 days of free membership in the
PlayStation Plus premium subscription service; 30 days of free service for Music Unlimited subscribers; and extending PlayStation Plus and Music Unlimited subscriptions for the number of days services were unavailable.

We are working around the clock to have some PlayStation Network services restored and we’ll be providing specific details shortly. We hope this update is helpful to you, and we will continue to keep you posted as we work to restore our network and provide you with both the entertainment and the security you deserve.
Click to expand...

http://blog.us.playstation.com/2011/05/04/sonys-response-to-the-u-s-house-of-representatives/
http://www.flickr.com/photos/playstationblog/sets/72157626521862165/
 
If I worked for Sony's PR department I'd suggest to hire the hackers. They clearly aren't malicious, otherwise the hacked information would have been all over the web by now. Just offer them a good contract, so they can plug the holes Sony obviously can't find itself. If you can't beat them, let them join you. That and changing the way they handle DRM issues ofc.
 
Well, my googlemail account was hacked today, undoubtedly due to the PSN breach. Or it's just a huge coincidence.

Couldnt log in as there was ''suspicous activity'' or something, turns out a single spam mail was sent out with sales jargon, the usual.

Passwords changed and I'm watching my cards like a hawk just to be sure.

Darkside55 said:
You're defending Sony pretty hard there Dynasty, but as much as you say, "Consumers are retarded and they don't understand these things take time," Sony should have alerted people about an external breach sooner than six days from when it happened. "Oh, no, they were trying to avoid panic and the rumor mill," are you serious? If your financial data was in jeopardy you wouldn't want to be told to sit with your thumb up your ass and calmly wait until they figure out how the hackers got in, how long they were in there for, etc. You let people know, "We had an external intrusion on the Playstation Network. While we are not sure as to the extent of the breach, we are advising caution and suggest that users change their passwords and keep an eye on their financial statements."

Hell, they were boned anyway. If PR released a statement that turned out to be a false alarm (or not as serious), then yes, users would be mad, but at least in the long run nothing was really affected. What ACTUALLY happened caused more harm to Sony than if they'd gone that route. They were damned if they did, damned if they didn't, but at least if they did it would've come off as Sony trying to protect the consumer's interests and data in the quickest manner possible. As it stands, it looks like they were inept and trying to cover their screw-up.
Click to expand...

Point I was trying to make was that they couldn't have confirmed it was even a hack minutes/hours/days after it happened. Like I said, it could've been a practical joke by a disgruntled employee still hired by Sony. It could've been rats nibbling at the wires, you just cant know.

There's so many variables, and you have to tick them all off one by one. I guess they saw ''inform the public'' as a pretty low priority. Spend all your time and resources on fixing the problem and getting things confirmed before you address the public. But yeah, Sony is a huge company and we pressume (key word) they can figure out the problem asap.

And lets not forget, their country is smashed to ***t right now as well, so their heads arent exactly in the game. Or..hmm..was it the US that got hacked. I dunno, isnt the CEO in Japan? I'm pulling at straws on that point.

Yeah I guess I was defending them quite hard, but that's how I feel about this situation. Once it's resolved, it'll blow away within a day or 2 of everyone having their accounts back and playing CoD again, and the only time we will hear of it in the future is when 360 fanboys use it to try and justify their lesser console choice.

Sony's stocks are on the rise again.

I dunno. I'm torn. Part of me thinks that if Sony felt the need to remind us or strongly suggest to be watching our accounts, then we aren't deserving of any security. Maybe that's worded wrong. I just think that if you aren't checking your cc and account statements atleast once a week, PSN breach or no breach, then there's something wrong with you. It's not paranoia, it's common sense.

Plus your cc is covered by the law, blah blah blah, so any actual illegal transactions would be dealt with. Yeah it's a hassle, but it happens to i-dont-believe-that amount of people EVERY DAY. So, deal with it and stop crying.

Maybe I'm just the only one who doesnt take this so seriously. The way I see it; they either have or dont have your details. You can only deal with it when something suspicious happens or is spotted. So...why worry until then? Cross that bridge when you come to it.
 
aparently sony is blaming anonymous and anonymous is negating everything even banning people that want to take campaigns against sony

well I hope they werent the responsibles,but I think helping to catch the real thiefs would be a good thing
 
Vegeta897 said:
Anonymous is not a ****ing hacker group. It's not even a group. I've done this rant before and I'm not doing it again god damnit.

Edit: See here http://www.halflife2.net/forums/showthread.php?175724&p=3249441#post3249441
Click to expand...

Anonymous is most definitely a group. Its several people categorizing themselves along with others. The fact that they have a motto which they put up on everything they hack is kind of a telltale sign. Its not just random people unaffiliated with each other who happen to want to remain anonymous doing this shit, its people intentionally referring to themselves, collectively, as Anonymous.

That said, Anonymous isn't a hacker group. Its a group who include hacking as just one of their many, many facets.
 
Anon most likely distracted Sony when the real "person" got to work, this "person" most likely then encriminated them then, thus all this comes up to here.
 
You must log in or register to reply here.

Similar threads

MFL
Fascinating look at the ongoing psychological evolution of flat hieirarchies.
Replies
2
Views
2K
Tollbooth Willie
Tollbooth Willie
Acurt1982
The Success and Failure of Silence: Gordon Freeman in 'Half Life' and 'Half Life 2'
Replies
1
Views
2K
Chowder
Chowder
VirusType2
PS3: rumor - don't use a credit card
Replies
16
Views
955
Kyorisu
Kyorisu
Warped
PSN is down
2
Replies
67
Views
3K
Warped
Warped
Combine Hybrid
PS3 root key found, sony is going to shit brick
2 3
Replies
91
Views
5K
Gargantou
Gargantou
Back
Top