The truth about the extent of the PSN outage comes to light...

THIS (http://arstechnica.com/gaming/news/2011/04/sony-admits-utter-psn-failure-your-personal-data-has-been-stolen.ars)

From sony themselves
http://blog.eu.playstation.com/2011/04/26/psnqriocity-service-update/



Well thats just great!:dead:

Well that's interesting, how many credit cards you think, are linked to PSN accounts?

All I can say on this matter is.... *gets a tub of popcorn and watches, occassionally munching on the popcorn*

All I can say on this matter is.... *gets a tub of popcorn and watches, occassionally munching on the popcorn*

Basically, I could see a class action lawsuit heading Sony's way.

I bet a certain "GEOHOT" is pi**ing himself laughing and it might take some of the heat off of him as this is a far more serious issue for sony :eek:

See this post if you don't know what I'm talking about, GEOHOT takin it to tha streetz dawg (http://www.thebestcasescenario.com/forum/showthread.php?t=25721)

I'm a little frustrated to say the least. Nothing funny has shown up on my accounts linked to the cards I've used. Waiting to see before I go running to get new cards issued.

They might actually make Geohot a martyr, because I would assume that this hack wouldn't have been available without his work.

AASLKFJKLJGFHGHFLKADJKLJ.

Checked my CC account. This could be entirely random/unrelated, but I don't see how. Went to log in to change my information and it would not let me. Said my account has been blocked out from logging in online for too many unsuccessful login attempts. . .

I haven't tried to log into that account in forever. Time for a call and reissue. Either way, someone is trying to get into their website on my account. Luckily I keep passwords all different.

Called and had a new card issued, and my online stuff cancelled, just in case. The woman told me she just got off the phone with another customer who had the same problem. Used the card on the playstation, and now was locked out of her online account for too many bad login attempts.

SOMEFINS FISHY BOUT DIS.

the cc i used on my account hasnt been active for months. From the email I got this morning I am not entirely concerned with it. With the information they may have gotten there is nothing they can do with it. They didn't get the cvv code, and the best they can try is a fishing expedition and I would hope most of us here know a little something about social engineering to the point that the fishing expedition would be futile.

Both my accounts have online banking that allow transfers outside. I haven't used it so I don't know what it entails, but on logging in and looking at it, seems all that is needed is a name/account/routing number.

At the very least, I won't have twats trying to guess my passwords and locking me out of my online accounts.

When I get back to a high speed area I think I will get a green dot card to use on it.

I'm just going to get the PSN cards at the store from now on. I should have learned from being burned by XBOX; why would Sony really be any different. Granted Sony had a security breach, and not just being stubborn about releasing a card tied to an account/recurring services.

They might actually make Geohot a martyr, because I would assume that this hack wouldn't have been available without his work.

Possibly. It's too early to say if his work was a stepping stone for this hack, but I would certainly not be surprised.:facepalm:

I don't have any consoles so I'm cooking up some popcorn too.

No online console accounts for me.


Just put my own bag of poppy in the 'nuke.

They might actually make Geohot a martyr, because I would assume that this hack wouldn't have been available without his work.

Wait.. wha?

Why would you even assume that? All his hack did was allow someone to load linux on a PS3!?!

If I were to suspect something, I would think it would be related to the Epsilon attack earlier this month.

http://www.securityweek.com/massive-breach-epsilon-compromises-customer-lists-major-brands

I have been getting emails from all my CC companies warning me of possible phishing attacks related to the breach.

I was under the impression that the original hack was blocked by sony, which enraged the hacking community as they could no longer run the homebrew stuff, and they then fought back by hacking PSN?

Wait.. wha?

Why would you even assume that? All his hack did was allow someone to load linux on a PS3!?!


Geohot's hack allowed for the total circumnavigation of the minimum security Sony employed. After he cracked that, the system and network mechanics were naked for anyone who cared to look at them. Knowing how the network functions definitely makes a hackers job a lot easier....probably why Sony was so pissed about it...

But, it's quite possible that it's just a completely random attack. We'll have to wait and see how he got in.

All in all it goes to show nothing is safe online, even when it's going through a huge company like Sony or Epsilon. I also feel sorry for my older bro who just got a PS3 like a month ago, what a let down. I am very interested to seeing how this unfolds....so I am the 4th or 5th throwing popcorn in the microwave?

got this from psn

Valued PlayStation Network/Qriocity Customer:

We have discovered that between April 17 and April 19, 2011,
certain PlayStation Network and Qriocity service user account
information was compromised in connection with an illegal and
unauthorized intrusion into our network. In response to this
intrusion, we have:

1) Temporarily turned off PlayStation Network and Qriocity services;

2) Engaged an outside, recognized security firm to conduct a
full and complete investigation into what happened; and

3) Quickly taken steps to enhance security and strengthen our
network infrastructure by rebuilding our system to provide you
with greater protection of your personal information.

We greatly appreciate your patience, understanding and goodwill
as we do whatever it takes to resolve these issues as quickly
and efficiently as practicable.

Although we are still investigating the details of this incident,
we believe that an unauthorized person has obtained the following
information that you provided: name, address (city, state/province,
zip or postal code), country, email address, birthdate, PlayStation
Network/Qriocity password, login, password security answers, and handle/PSN
online ID. It is also possible that your profile data may have been obtained,
including purchase history and billing address (city, state/province, zip
or postal code). If you have authorized a sub-account for your dependent,
the same data with respect to your dependent may have been obtained.
While there is no evidence that credit card data was taken at this time,
we cannot rule out the possibility. If you have provided your credit card
data through PlayStation Network or Qriocity, out of an abundance of caution
we are advising that your credit card number (excluding security code) and
expiration date may also have been obtained.

For your security, we encourage you to be especially aware of email,
telephone, and postal mail scams that ask for personal or sensitive
information. Sony will not contact you in any way, including by email,
asking for your credit card number, social security, tax identification
or similar number or other personally identifiable information. If you
are asked for this information, you can be confident Sony is not the
entity asking. When the PlayStation Network and Qriocity services are
fully restored, we strongly recommend that you log on and change your
password. Additionally, if you use your PlayStation Network or Qriocity
user name or password for other unrelated services or accounts, we
strongly recommend that you change them as well.

To protect against possible identity theft or other financial loss,
we encourage you to remain vigilant, to review your account statements
and to monitor your credit or similar types of reports.

We thank you for your patience as we complete our investigation of
this incident, and we regret any inconvenience. Our teams are working
around the clock on this, and services will be restored as soon as
possible. Sony takes information protection very seriously and will
continue to work to ensure that additional measures are taken to
protect personally identifiable information. Providing quality and
secure entertainment services to our customers is our utmost priority.
Please contact us at 1-800-345-7669 should you have any additional questions.

Sincerely,

Sony Computer Entertainment and Sony Network Entertainment

ditto pcclan

Got that too, glad I don't have a card linked to my account.

From the PSN blog: "The personal data table, which is a separate data set, was not encrypted.

From the PSN blog: "The personal data table, which is a separate data set, was not encrypted.

Stupid companies...when will they learn to just encrypt everything?

well there might be a third attack this weekend http://news.cnet.com/8301-31021_3-20060227-260.html?tag=cnetRiver

well there might be a third attack this weekend http://news.cnet.com/8301-31021_3-20060227-260.html?tag=cnetRiver

How can people be smart enough to breach security designed to keep them out yet too stupid to see that they are only making the situation worse for themselves and every PS3 owner?:facepalm:

I recommend anyone with any kind of Sony account changes all their contact and other relevant info to an alias, 123 Bakalakadaka St, none@none.com, etc.