Looks like there is some light in this mess! "Credit card companies find no PSN-related activity, all eyes on Hirai" Wells Fargo, American Express, and MasterCard say there's no unauthorized activity tied to leak; debacle may affect executive's succession to Sony's top spot; Sony shares sink 4.5%. + Show Spoiler +
As the PSN outage and data leak drag on, Bloomberg has posted a pair of articles that add to the ongoing saga. First, the news service reports that financial companies Wells Fargo, American Express, and MasterCard have seen "no unauthorized activity relating to Sony." The news comes shortly after Sony announced that all PSN credit card information had been encrypted during the time of the leak, and that there was "no evidence" that any had been stolen.
The credit card companies' revelation is a rare bright spot in the crisis, which is weighing heavily on the brow of one particular Sony executive. Bloomberg also reports that Kaz Hirai, who became head Sony's entire consumer electronics business on April 1, is under a magnifying glass to see how he handles the ongoing debacle. The scrutiny is particularly intense as Hirai has extolled a plan to use the PlayStation Network as the basis of a content store that will extend to other Sony devices such as HDTVs and Blu-ray players.
"Almost everything Hirai has been trying to do has an element of network," Mitsubishi UFJ Morgan Stanley Securities analyst Masahiko Ishino told the news service. "Sony's strategy to connect its products through network is very crucial for the company’s transformation. Sony may struggle if the business gets disrupted."
How Hirai copes with the PSN outage--which has already sparked government investigations and civil lawsuits--will likely affect his chances of succeeding current Sony Corp. CEO Sir Howard Stringer. As part the announcement of Hirai's promotion, Stringer himself said that he was the frontrunner. "This is an opportunity for the board to watch Hirai-san and judge his performance," said Stringer.
Unfortunately for Sony, the market is already weighing in on the PSN outage. Today, Sony shares fell 4.5 percent to 2,260 ($27.71) on the Tokyo Stock Exchange. It was the largest decline for the company since the tragic earthquake and tsunami hit Japan in mid-March.
On April 29 2011 03:56 Xeofreestyler wrote: I am so glad that I got a nintendo 64 instead of a playstation when I was a kid right now
I'm glad I went for a playstation instead. You certainly missed out. This is only a small problem, Sony has the tools and money to fix it, we just all have to be patient.
On April 29 2011 03:56 Xeofreestyler wrote: I am so glad that I got a nintendo 64 instead of a playstation when I was a kid right now
I'm glad I went for a playstation instead. You certainly missed out. This is only a small problem, Sony has the tools and money to fix it, we just all have to be patient.
how can they fix this problem with money? I mean they are not gonna buy the stolen data back
I really hope they learn from this incident, lets hope it won't happen again.
On April 29 2011 03:56 Xeofreestyler wrote: I am so glad that I got a nintendo 64 instead of a playstation when I was a kid right now
I'm glad I went for a playstation instead. You certainly missed out. This is only a small problem, Sony has the tools and money to fix it, we just all have to be patient.
how can they fix this problem with money? I mean they are not gonna buy the stolen data back
I really hope they learn from this incident, lets hope it won't happen again.
I hope that all companies providing an online service like this, be is XBL, wii store, paypal, etc learn from this. If they are taking a lax stance towards securing our data, then I hope this scares them all into being much more defensive with our personal data.
I really don't doubt that this event will affect how many people will buy a PS4 when/if it comes out.
Can I... Can I play my games now? seriously sony. I dont care if we all have to sign in under temporary username XXXXXX-2 or something, why is connecting to the internet through our console IMPOSSIBLE without our personal data? Have they really lost 'control' of their servers?? Should i ACTUALLY sell my ps3??
The folks over at the PSX-Scene forums are reporting that over 2.2 million customers' names, addresses, phone numbers and credit/debit card information is up for grabs to the highest bidder, including the crucial three digit CVV2 numbers.
Kevin Stevens, a Security Researcher, has been following the story and tweeted earlier, "Supposedly the hackers selling the DB says it has: fname, lnam, address, zip, country, phone, email, password, dob, ccnum, CVV2, exp date", but added that "it is not a rumor, it was a conversation on a criminal forum."
On April 29 2011 03:56 Xeofreestyler wrote: I am so glad that I got a nintendo 64 instead of a playstation when I was a kid right now
I'm glad I went for a playstation instead. You certainly missed out. This is only a small problem, Sony has the tools and money to fix it, we just all have to be patient.
Umm... Playstation1 wasn't even close to N64. Nowadays, PS3 > Wii, sure.
Anyways, all my friends who have PSN and all this jazz have been pissing themselves and freaking out... it's been terrible
On April 29 2011 03:56 Xeofreestyler wrote: I am so glad that I got a nintendo 64 instead of a playstation when I was a kid right now
I'm glad I went for a playstation instead. You certainly missed out. This is only a small problem, Sony has the tools and money to fix it, we just all have to be patient.
how can they fix this problem with money? I mean they are not gonna buy the stolen data back
I really hope they learn from this incident, lets hope it won't happen again.
I hope that all companies providing an online service like this, be is XBL, wii store, paypal, etc learn from this. If they are taking a lax stance towards securing our data, then I hope this scares them all into being much more defensive with our personal data.
I really don't doubt that this event will affect how many people will buy a PS4 when/if it comes out.
Believe me they learn, but it doesn't matter. Nothing is unhackable, if a man can program it, a man can reverse-engineer it. We need some Xel'Naga tech if we want to be safe
The Pentagon, the NASA etc has all been hacked. People should be aware that nothing is really safe on cyberspace, and consider that they are taking risk everytime information is put out there.
"The bulk of attacks on corporate and governmental computer networks go unreported because victims want to avoid the embarrassment and public scrutiny that come with acknowledging that their systems have been hacked.
Companies fear that their stock price might take a hit or that their brand might be damaged after news of an intrusion, said Jerry Dixon, a former government official who was instrumental in setting up the U.S. government's crime-fighting Computer Emergency Readiness Team.
"Everybody's network is getting hammered all the time," said Dixon, director of analysis at Team Cymru, a non-profit security research group."
"Security experts say that companies that are attacked remain silent most of the time.
For example, 85 percent of some 200 companies in electricity-producing industries said that their networks had been hacked, according to a survey released this month by security software maker McAfee Inc and the non-profit Center for Strategic and International Studies. Yet utilities rarely disclose such attacks.
One in four of those companies in the McAfee/CSIS study reported that they had been victims of extortion campaigns from hackers who had broken into their networks. (tinyurl.com/3vgp5us)
In many cases, intrusions go undetected by the victim company, leaving the firm and its customers completely unaware that criminals have access to their sensitive data.
"Everybody's data is at risk. We've all got to worry about our personal information, wherever it may be," said Josh Shaul, chief technology officer for Application Security Inc.""
Since everything is hackable and being hacked all the time, then Sony is even more culpable for not encrypting my personal data. At least give them an extra layer of trouble.... geeze. There is no excuse for that.
The folks over at the PSX-Scene forums are reporting that over 2.2 million customers' names, addresses, phone numbers and credit/debit card information is up for grabs to the highest bidder, including the crucial three digit CVV2 numbers.
Kevin Stevens, a Security Researcher, has been following the story and tweeted earlier, "Supposedly the hackers selling the DB says it has: fname, lnam, address, zip, country, phone, email, password, dob, ccnum, CVV2, exp date", but added that "it is not a rumor, it was a conversation on a criminal forum."
This is looking worse than i tought. Glad i cancelled my card but still T_T
I've been told that the CVV2 numbers weren't stored in Sony's servers. This is probably fake.
On April 29 2011 12:33 Kyrth wrote: Since everything is hackable and being hacked all the time, then Sony is even more culpable for not encrypting my personal data. At least give them an extra layer of trouble.... geeze. There is no excuse for that.
I agree, their security design seem to be pretty poor. I think they relied too much on the PS3 being unhacked in their thinking, very big mistake due to arrogance.
Forgetting to randomize your masterkey's integer is pretty stupid too.
Rumours are that Sony also had the main SSL key of PSN they use as a constant in a header file. It's terrible coding if true.
I'm just happy I never put my CC info on there. The only things I ever downloaded from PSN is a free demo and even then, I was never able to get my connection stable on my PS3 (probably has to do with opening ports, the PS3 gets kicked off my internet quickly) so it's definitely a bit lucky on my side.
Still unhappy about my personal information being there for hackers but it's not like you couldn't find it any other way.
On April 29 2011 13:04 noidontthinkso wrote: slowly im starting to get really angry how long do they fucking need to take this fucking ps3 server back online i want to change my fucking passwords
They said they aim for next week May 3rd I believe. They'll also make you (and everyone else) change your password when it goes online.
EPT
