EPTPSN Back from the Dead - Page 3
| Forum Index > General Forum |
|
Bub
United States3518 Posts
| ||
|
Poststrata
United States110 Posts
On April 26 2011 14:23 Ideas wrote: really glad that this didnt happen while i got a game that I would want online access for, but this must really suck for a lot of people. still beats paying 60$ a year for online though lol 50$ a year isn't bad come on. Anyway, It would really suck if personal information really got out (address, email, credit card) Hopefully this gets resolved. The phrase "Digital Looting" makes me imagine a world like Tron's and some dude physically looting a cyber shop while avoiding the digital police by using some anti tracking device or unkown cyber ID. lol | ||
|
Roija
United States84 Posts
Then another day passed. And another. And another. This was clearly more than a DDoS but Sony were keeping very quiet – almost too quiet. Eventually Sony admitted they had been subjected to some sort of attack. Yesterday they made another announcement, informing their user base that the whole system will be offline indefinitely. No further information from Sony but there is a man who thinks he knows what causing the extended downtime. ‘Chesh’ is a staff member from psx-scene.com, a site dedicated to hacking and modding Playstations. Together with various developers in the scene he’s been putting all the pieces together and if his theory holds, Sony has been battling their biggest crisis yet. Chesh believes that the problem stems from the availability of a new CFW (custom firmware) for the Playstation 3. CFW’s give hardware modified functionality and REBUG, as it’s known, turns a standard PS3 into a machine which provides access to some of the PSN’s features usually reserved for developers. REBUG, which was released on the last day of March, apparently has a trick up its sleeve in that it is able to get previously hacked Playstation 3 consoles back online after they’d been excluded by Sony. It’s not a feature built in by design, but one that users have learned how to exploit. Chesh reports that some REBUG users were initially using it to play Call of Duty on the dev networks around April 3rd. Neat enough in itself but there was a monster in the shadows. Since REBUG allowed users to connect to a previously secure and private developer network, certain information provided by users wasn’t security checked by Sony. According to Chesh, one of the items whose authenticity was never checked was – unbelievably – credit card numbers. People could apparently make them up and get access to whatever content they wanted. “What happened next was extreme piracy of PSN content,” Chesh explained. He said that over on PSX-Scene he learned of people downloading free Sony content from the dev networks on April 7th. As we know, Sony shut down the entire PSN on April 20th and it remains down today. Since Sony have told their customers next to nothing about the problems it has faced – including whether or not credit card information is safe – it’s a safe bet that none of the above will be confirmed or denied. Chesh himself admits that while the above information is true, he can’t verify 100% if it’s the absolute reason why Sony pulled the PSN offline. That said, it’s a big enough problem for them to do so and if Sony has pulled the plug for another unknown reason, their problems only go deeper. And it’s hard to imagine a situation worse than this. http://torrentfreak.com/playstation-network-shut-down-to-end-piracy-free-for-all-110426/ | ||
|
pStar
996 Posts
Who the hell do they think they are that they can take IP addresses from a website or a youtube video. They deserve everything they get, and if there was a DDoS going on i would certainly be helping with it. It is time somebody stood up to these Multi-Nationals who think they can control everything. Hopefully Sony will learn not to fuck with the modding and hacking community because we will come and get them. | ||
DragoonPK
3259 Posts
+ Show Spoiler + Valued PlayStation Network/Qriocity Customer, We have discovered that between April 17 and April 19, 2011, certain PlayStation Network and Qriocity service user account information was compromised in connection with an illegal and unauthorized intrusion into our network. In response to this intrusion, we have: 1) Temporarily turned off PlayStation Network and Qriocity services; 2) Engaged an outside, recognized security firm to conduct a full and complete investigation into what happened; and 3) Quickly taken steps to enhance security and strengthen our network infrastructure by re-building our system to provide you with greater protection of your personal information. We greatly appreciate your patience, understanding and goodwill as we do whatever it takes to resolve these issues as quickly and efficiently as practicable. Although we are still investigating the details of this incident, we believe that an unauthorized person has obtained the following information that you provided: name, address (city, state/province, zip or postal code), country, email address, birthdate, PlayStation Network/Qriocity passwords and login, and handle/PSN online ID. It is also possible that your profile data, including purchase history and billing address (city, state, zip), and your PlayStation Network/Qriocity password security answers may have been obtained. If you have authorized a sub-account for your dependent, the same data with respect to your dependent may have been obtained. While there is no evidence that credit card data was taken at this time, we cannot rule out the possibility. If you have provided your credit card data through PlayStation Network or Qriocity, to be on the safe side we are advising you that your credit card number (excluding security code) and expiration date may also have been obtained. For your security, we encourage you to be especially aware of email, telephone, and postal mail scams that ask for personal or sensitive information. Sony will not contact you in any way, including by email, asking for your credit card number, social security, tax identification or similar number or other personally identifiable information. If you are asked for this information, you can be confident Sony is not the entity asking. When the PlayStation Network and Qriocity services are fully restored, we strongly recommend that you log on and change your password. Additionally, if you use your PlayStation Network or Qriocity user name or password for other unrelated services or accounts, we strongly recommend that you change them, as well. To protect against possible identity theft or other financial loss, we encourage you to remain vigilant to review your account statements and to monitor your credit or similar types of reports. We thank you for your patience as we complete our investigation of this incident, and we regret any inconvenience. Our teams are working around the clock on this, and services will be restored as soon as possible. Sony takes information protection very seriously and will continue to work to ensure that additional measures are taken to protect personally identifiable information. Providing quality and secure entertainment services to our customers is our utmost priority. Please check www.eu.playstation.com/psnoutage should you have any additional questions. Sincerely, Sony Network Entertainment and Sony Computer Entertainment Teams Sony Network Entertainment Europe Limited (formerly known as PlayStation Network Europe Limited) is a subsidiary of Sony Computer Entertainment Europe Limited the data controller for PlayStation Network/Qriocity personal data. Class action lawsuit incoming? http://blog.eu.playstation.com/ | ||
|
sung_moon
United States10110 Posts
 well at least i still got GGPO for my online fightin game fix :/ | ||
|
Logo
United States7542 Posts
I wonder what the connection to Anonymous is on this (if there is one). I wonder if their efforts uncovered this vulnerability and someone went off on their own to exploit it. | ||
|
Kralic
Canada2628 Posts
| ||
|
Mailing
United States3087 Posts
 Not like they are perfect either | ||
|
Pads
England3228 Posts
| ||
|
DragoonPK
3259 Posts
On April 27 2011 05:44 Pads wrote: I bought a ps3 like 3 hours ago LOL XD, well lucky you didnt have a credit card connected to an account. Lots of people who did must be frustrated as hell. I always used pre-paid PSN cards, paid of this time I guess... | ||
|
Sinborn
United States275 Posts
| ||
|
Kurr
Canada2338 Posts
This reminds me of Battle.net not letting me change my personal info once I realized they were putting it out there in SC2 with friend lists (yes, locked info, I tried to change it... nope). | ||
|
relyt
United States1073 Posts
Although we are still investigating the details of this incident, we believe that an unauthorized person has obtained the following information that you provided: name, address (city, state/province, zip or postal code), country, email address, birthdate, PlayStation Network/Qriocity passwords and login, and handle/PSN online ID. It is also possible that your profile data, including purchase history and billing address (city, state, zip), and your PlayStation Network/Qriocity password security answers may have been obtained. Apparently Sony didn't even hash the passwords :/. | ||
|
Holcan
Canada2593 Posts
On April 27 2011 05:51 Kurr wrote: Do you guys remember what info we had to put in to get access to PSN? I know there's probably not that much info and I never bought anything online (because my PS3 gets disconnected after 15 minutes online without fail, never been able to fix it) so I know I don't have credit card info there but there's at least my name, DOB, address... gah, I hate this. This reminds me of Battle.net not letting me change my personal info once I realized they were putting it out there in SC2 with friend lists (yes, locked info, I tried to change it... nope). Do you go to bars and give out your ID, they can get all of this information within a simple glance. Honestly, what do you think people can do with those three pieces of information? its not your SIN card, relax. | ||
|
Charger
United States2405 Posts
On April 27 2011 05:38 Mailing wrote: xbox live was down for 2 weeks after Halo 3 came out as well Not like they are perfect either Yeah but at least my personal information wasn't stolen :p | ||
|
Logo
United States7542 Posts
On April 27 2011 06:01 Holcan wrote: Do you go to bars and give out your ID, they can get all of this information within a simple glance. Honestly, what do you think people can do with those three pieces of information? its not your SIN card, relax. True, but there is also a difference than a glance and having it written down. Though really it's not uncommon for you to give out enough information for someone to steal your identity. There's quite a few forms that require all your info + SSN. Still that information should be kept secure and private even if it's not terribly dangerous to have leaked. This is probably over blowing the threat by a lot: http://extendedsubset.com/?p=47 but it's still an interesting read. | ||
|
Cuh
United States403 Posts
| ||
|
relyt
United States1073 Posts
On April 27 2011 06:08 Cuh wrote: So am I reading this right, Unless i played CoD, or anything online for that matter, Im subject to the attack.. Or anyone can be affected with a PSN account? If your info is on PSN, it's most likely compromised. | ||
|
Zocat
Germany2229 Posts
On April 27 2011 05:51 Sinborn wrote: I still stick by my theory that GLADOS is totally behind this outage to prevent me from playing Portal 2 on my PC. No - sorry, it's worse! Skynet was implemented on April 19, 2011 and began its attack against humanity on April 21 [Source] But meh... sucks. Have to doublecheck all my email accounts :/ | ||
| ||
