|
There is NO second attack!
New info from Sony:
This information, which was discovered by engineers and security consultants reviewing SOE systems, showed that personal information from approximately 24.6 million SOE accounts may have been stolen, as well as certain information from an outdated database from 2007. The information from the outdated database that may have been stolen includes approximately 12,700 non-U.S. credit or debit card numbers and expiration dates (but not credit card security codes), and about 10,700 direct debit records of certain customers in Austria, Germany, Netherlands and Spain.
http://www.joystiq.com/2011/05/02/sony-hit-with-second-attack-loses-12-700-credit-card-nu/
Short recap:
On May 03 2011 08:14 godemperor wrote:
From what I gathered, there was an attack on PSN and SOE in April. Sony realized that there was an attack on PSN and shut it down for "maintainance". Last night there Sony shut down SOE servers and soon after there were reports that 12,000 CC numbers were stolen. It is now revealed that the 12000 CC numbers were form the first attack.
Can a mod change title to "CC numbers and SOE accounts compromised"
|
............................................______ __
....................................,.-‘”...................``~.,
.............................,.-”...................................“-.,
.........................,/...............................................”:,
.....................,?........................... ...........................,
.................../.................................................. .........,}
................./.................................................. ....,:`^`..}
.............../.................................................. .,:”........./
..............?.....__............................ .............:`.........../
............./__.(.....“~-,_..............................,:`........../
.........../(_....”~,_........“~,_....................,:`..... ..._/
..........{.._$;_......”=,_.......“-,_.......,.-~-,},.~”;/....}
...........((.....*~_.......”=-._......“;,,./`..../”............../
...,,,___.`~,......“~.,....................`..... }............../
............(....`=-,,.......`........................(......;_,,-”
............/.`~,......`-...................................../
.............`~.*-,.....................................|,./.....,__
,,_..........}.>-._...................................|........... ...`=~-,
.....`=~-,__......`,.................................
...................`=~-,,.,...............................
................................`:,,.............. .............`..............__
.....................................`=-,...................,%`>--==``
........................................_........ ..._,-%.......`
---
Hopefully I'm don't get screwed by this, I've had the same credit card number since 2007 
User was warned for this post
|
From some who still plays a SOE MMO (SWG) this is very annoying -_-
|
this is getting really brutal tough break for sony, hopefully they'll get this under control shortly.
User was warned for this post before the edit
|
loooooooooooooooooooooooool sony security. so glad i don't have a ps3.
|
This isn't even only PS3s right? If you had a game on the PC that uses SOE, it would've been compromised too right?
|
Twice?! oh cmon this is madness
|
Just updated OP, 10,700 debit card info from EU are also stolen.
|
It's scary to see this happening to sony again, I guess they'll be investing heavily in protection of data in the future, which is better for the industry overall I hope.
Edit: should have read closer, not 2nd attack; at least they're pinpointing what was taken.
|
This is the same attack. Read the articles please. It's not a seperate attack, they just barely found that this data was stolen in the original attack.
|
United Kingdom16710 Posts
Good thing I'm going to the bank tomorrow to cancel my debit card and order a replacement.
Oh and GET YOUR SHIT TOGETHER SONY.
|
On May 03 2011 07:39 Telcontar wrote:
Good thing I'm going to the bank tomorrow to cancel my debit card and order a replacement.
Oh and GET YOUR SHIT TOGETHER SONY.
They are, obviously why they brought down the network and are upgrading all of their systems.
|
These credit cards are not from the alleged security breach last night, but form april.
|
lol wasn't the first statement Sony released was that none of the credit cards were at risk? Or was that the hackers who said that?
|
On May 03 2011 07:52 mastergriggy wrote:
lol wasn't the first statement Sony released was that none of the credit cards were at risk? Or was that the hackers who said that?
Sony said they had no indications that CC were at risk. And today they found in a completely separate database that some credit card info had been compromised.
|
On May 03 2011 07:52 mastergriggy wrote:
lol wasn't the first statement Sony released was that none of the credit cards were at risk? Or was that the hackers who said that?
Sony knows they are in deep shit. They're just beating around the bush right now. This is what you get for fucking with Anonymous. I guess Anonymous really doesn't like it when companies try to control what you can and cannot do with a product you bought and outright own legally. I'm on their side in this whole shit storm.
|
Gentlemen, we've designed the PS3 to be nigh unhackable, making game piracy a thing of the past. As expected we've monitored a significant rise in game sales and, consequentially, our profits. Let me open up our bank account to show the board the extent of our ...er ... ooh ... shit.
|
Wait, so this also is affecting the Sony Online service? I had used it in the past (ages ago for infantry, and later for planetside). I have a PS3 but have never used the PSN to purchase anything, am I still at risk? I honestly couldnt care less about my address, name, etc, just the CC used was not mine (but with permission) and I want to make sure I warn them. Says in the article ""approximately 12,700 non-US credit or debit card numbers and expiration dates (but not credit card security codes)," I'm Canadian, and Canada was not listed. Generally it falls under North America, but non-US was used.
Honestly, First Sony does not use a random number which is critical in the operation of it's security for the PS3, then hands out the information of every single PSN user. Sony has some serious security issues. I truly hope they get their asses sued, and hard. It's disgusting.
|
How can they not realize these databases were taken until two weeks after it happened? It boggles the mind. Who knows what else they've taken that Sony just hasn't noticed yet.
|
man, watch out, i have to call visa and have them send me a new credit card (if that). too much work for me
|
On May 03 2011 07:57 Joementum wrote:Show nested quote +On May 03 2011 07:52 mastergriggy wrote:
lol wasn't the first statement Sony released was that none of the credit cards were at risk? Or was that the hackers who said that? Sony knows they are in deep shit. They're just beating around the bush right now. This is what you get for fucking with Anonymous. I guess Anonymous really doesn't like it when companies try to control what you can and cannot do with a product you bought and outright own legally. I'm on their side in this whole shit storm.
Please, like anonymous could pull something like this. The only thing they are capable of is DDoS attacks. This is the work of higher powers than the 15 year old nerds that make up anonymous.
|
Can you direct me to the site/article where Anonymous claimed responsibility for this?
|
|
|
On May 03 2011 08:02 mike1290 wrote:
Can you direct me to the site/article where Anonymous claimed responsibility for this?
No, because they denied responsibility for this.
|
On May 03 2011 08:01 aike wrote:Show nested quote +On May 03 2011 07:57 Joementum wrote:On May 03 2011 07:52 mastergriggy wrote:
lol wasn't the first statement Sony released was that none of the credit cards were at risk? Or was that the hackers who said that? Sony knows they are in deep shit. They're just beating around the bush right now. This is what you get for fucking with Anonymous. I guess Anonymous really doesn't like it when companies try to control what you can and cannot do with a product you bought and outright own legally. I'm on their side in this whole shit storm. Please, like anonymous could pull something like this. The only thing they are capable of is DDoS attacks. This is the work of higher powers than the 15 year old nerds that make up anonymous.
This is why Anonymous is so dangerous, because people think they are just 15 year old nerds.
|
|
|
Oh balls, ya buy one game on PSN and then this happens. I swear if I get screwed I'll be so sad...
|
On May 03 2011 07:30 Draconicfire wrote:
This isn't even only PS3s right? If you had a game on the PC that uses SOE, it would've been compromised too right?
Possibly, so far these numbers are just from the PSN breach as far as I know.
|
United States22883 Posts
Before I do anything, can you confirm what happened. From what I gather:
During the April attack, those 12,700 creditcards were stolen and Sony has just realized this now, and is reporting it. This was a PSN attack.
Last night, there was another attack, and it is being sorted out now. This was a Sony Online Entertainment attack.
Is this true? Because PSN is different from Sony's online MMO stuff.
|
United States4796 Posts
Ouch yo. Hope people aren't taking so much flak. :/
|
On May 03 2011 08:04 peekn wrote:
Oh balls, ya buy one game on PSN and then this happens. I swear if I get screwed I'll be so sad...
if u keep an eye on your credit card statement or through online banking, i dont know how you would get screwed. any major credit card company would just take the fraud charges off your credit card.
i have even had 2 debit card withdrawals that wasn't done by me and my bank just gave me back the money.
people are way too paranoid with this shit.
|
On May 03 2011 08:10 Jibba wrote:
Before I do anything, can you confirm what happened. From what I gather:
During the April attack, those 12,700 creditcards were stolen and Sony has just realized this now, and is reporting it.
Last night, there was another attack, and it is being sorted out now.
Is this true? Because PSN is different from Sony's online MMO stuff.
From what I gathered, there was an attack on PSN and SOE in April. Sony realized that there was an attack on PSN and shut it down for "maintainance". Last night there Sony shut down SOE servers and soon after there were reports that 12,000 CC numbers were stolen. Many new outlets just linked it with the reportedly second attack last night. But it is now revealed that the 12000 CC numbers were form the first attack. Sony has yet to confirm the second attack.
|
thats it, I'm changing my cc number tomorrow, doesn't help that I found out that proving your credit card has been compromised in the Netherlands can be quite tough compared to the US, I'm not taking the chance.
|
I feel lucky that the card I was using on PSN literally expired last month.
|
United States22883 Posts
On May 03 2011 08:14 godemperor wrote:Show nested quote +On May 03 2011 08:10 Jibba wrote:
Before I do anything, can you confirm what happened. From what I gather:
During the April attack, those 12,700 creditcards were stolen and Sony has just realized this now, and is reporting it.
Last night, there was another attack, and it is being sorted out now.
Is this true? Because PSN is different from Sony's online MMO stuff. From what I gathered, there was an attack on PSN and SOE in April. Sony realized that there was an attack on PSN and shut it down for "maintainance". Last night there Sony shut down SOE servers and soon after there were reports that 12,000 CC numbers were stolen. Many new outlets just linked it with the reportedly second attack last night. But it is now revealed that the 12000 CC numbers were form the first attack. Sony has yet to confirm the second attack.
Hmm, well I guess if they were hit again we should keep things in this thread? Can you clarify the OP with what we know, so new readers will understand.
|
Thank god my mom didn't agree to buy me a Playstation 3... whew. Guess I'll stick with PC for now.
This won't go down well for them, and this is already pretty bad for them. They will lose thousands of customers from this slip up.
I am VERY concerned for my cousins security though. He downloaded several games for his PSP, I don't know if they were free games that didn't require personal information, but... man.
|
On May 03 2011 08:20 Jibba wrote:Show nested quote +On May 03 2011 08:14 godemperor wrote:On May 03 2011 08:10 Jibba wrote:
Before I do anything, can you confirm what happened. From what I gather:
During the April attack, those 12,700 creditcards were stolen and Sony has just realized this now, and is reporting it.
Last night, there was another attack, and it is being sorted out now.
Is this true? Because PSN is different from Sony's online MMO stuff. From what I gathered, there was an attack on PSN and SOE in April. Sony realized that there was an attack on PSN and shut it down for "maintainance". Last night there Sony shut down SOE servers and soon after there were reports that 12,000 CC numbers were stolen. Many new outlets just linked it with the reportedly second attack last night. But it is now revealed that the 12000 CC numbers were form the first attack. Sony has yet to confirm the second attack. Hmm, well I guess if they were hit again we should keep things in this thread? Can you clarify the OP with what we know, so new readers will understand.
Done, but its all very confusing with conflicting reports, timelines and extent of damage.
|
On May 03 2011 08:20 Jibba wrote:Show nested quote +On May 03 2011 08:14 godemperor wrote:On May 03 2011 08:10 Jibba wrote:
Before I do anything, can you confirm what happened. From what I gather:
During the April attack, those 12,700 creditcards were stolen and Sony has just realized this now, and is reporting it.
Last night, there was another attack, and it is being sorted out now.
Is this true? Because PSN is different from Sony's online MMO stuff. From what I gathered, there was an attack on PSN and SOE in April. Sony realized that there was an attack on PSN and shut it down for "maintainance". Last night there Sony shut down SOE servers and soon after there were reports that 12,000 CC numbers were stolen. Many new outlets just linked it with the reportedly second attack last night. But it is now revealed that the 12000 CC numbers were form the first attack. Sony has yet to confirm the second attack. Hmm, well I guess if they were hit again we should keep things in this thread? Can you clarify the OP with what we know, so new readers will understand.
Sony says there was no second attack. This stuff was taken in the original breach, they just didn't notice until now.
|
Sony's PR department got their work cut out for them.
|
On May 03 2011 08:26 OTIX wrote:Show nested quote +On May 03 2011 08:20 Jibba wrote:On May 03 2011 08:14 godemperor wrote:On May 03 2011 08:10 Jibba wrote:
Before I do anything, can you confirm what happened. From what I gather:
During the April attack, those 12,700 creditcards were stolen and Sony has just realized this now, and is reporting it.
Last night, there was another attack, and it is being sorted out now.
Is this true? Because PSN is different from Sony's online MMO stuff. From what I gathered, there was an attack on PSN and SOE in April. Sony realized that there was an attack on PSN and shut it down for "maintainance". Last night there Sony shut down SOE servers and soon after there were reports that 12,000 CC numbers were stolen. Many new outlets just linked it with the reportedly second attack last night. But it is now revealed that the 12000 CC numbers were form the first attack. Sony has yet to confirm the second attack. Hmm, well I guess if they were hit again we should keep things in this thread? Can you clarify the OP with what we know, so new readers will understand. Sony says there was no second attack. This stuff was taken in the original breach, they just didn't notice until now.
Can you give me a source so i can update the OP.
|
|
|
Updated OP with Sony's press release.
|
On May 03 2011 08:26 OTIX wrote:
Sony says there was no second attack. This stuff was taken in the original breach, they just didn't notice until now.
They specifically mention station and SOE accounts in the press release though which made me wonder because I thought station accounts were PC and PS3 just had PSN accounts or something but I haven't owned a console since SNES and PS1 so I got no idea.
Anyone know if PSN accounts are just normal station accounts?
But anyways, they did hire a 3rd party security firm after the PSN breach, so this downtime might just be because they found something that needed fixing and not necessarily because of a new attack.
And you can login and chance password now it seems and their CEO said it had been a rough day but they hoped to have it back up soon, so maybe it's not as bad as it seems.
Our intention is to get the service back up as soon as humanly possible.
We�'re working day and night to do this. I�'m very hopeful we�'ll be down only a short time. But we have work to do to make sure everything is secure and buttoned up.
|
Any chance of a mod deleting or updating the title of this thread? It's completely untrue.
|
Where is now that guy who said.. thank god im PC gamer.. because PC programmers know how to make things secure..
|
On May 03 2011 08:40 ArYeS wrote:
Where is now that guy who said.. thank god im PC gamer.. because PC programmers know how to make things secure..
There has been absolutely no confirmation that things like Steam are any more secure than PSN.
|
United States22883 Posts
Ok, I'm going to close this and edit your OP into the other thread.
|
|
|
|
|
|
EPT
