PSN - Down for almost a week, 70Million + User Information has been compromised

**dnniwa485** · 04-26-2011, 04:30 PM

Sony Doesn’t Know Yet If Your Credit Card Number Was Stolen

For most of this thread: Please, please, dont make this thread head again as a piracy talk. Ok lets continue....

Quote:

Brian Crecente — Sony Doesn't Know Yet If Your Credit Card Number Was StolenSony has not yet determined if the personal information or credit card numbers of users on the still-offline Playstation Network have been stolen, according to a Sony spokesman.

Sony Computer Entertainment is conducting "thorough investigation" into the outage, Satoshi Fukuoka, a spokesman for Sony Computer Entertainment in Tokyo, told PC World.

Sony Computer Entertainment of America spokesman Patrick Seybold reiterated Fukuoka's statement, confirming that Sony is still looking into whether credit card or other personal information were taken during the "external intrusion."

Both declined to provide more information about the intrusion that led the company to take the global Playstation Network down last week. The network remains down as of Monday morning.

In an update this morning, Seybold said there is no update or timeframe for getting the network back up yet.

"As we previously noted, this is a time intensive process and we're working to get them back online quickly," he wrote. "We'll keep you updated with information as it becomes available. We once again thank you for your patience."

Seybold said over the weekend that officials were working around the clock to rebuild the network.

Source: Kotaku, the Gamer

-----------------------

Just to be safe, I just locked down my VISA account atm since of this event. Well, we'll never know what will happend next, since PS3 is totally fail on its security features.

I'm beggining to think that Microsoft and Nintendo Software Stores are far more actually secured than PSN, gah... ill remove my VISA ID on my PSN as soon as the service restored... i'll stick with PSN cards this time.. gaah hassle.

**dnniwa485** · 04-27-2011, 08:34 AM

Our User Information has been compromised... thanks Sony

To quote from my email that I received just this morning.

Quote:

Valued PlayStation Network/Qriocity Customer:
We have discovered that between April 17 and April 19, 2011, certain PlayStation Network and Qriocity service user account information was compromised in connection with an illegal and unauthorized intrusion into our network. In response to this intrusion, we have:

Temporarily turned off PlayStation Network and Qriocity services;
Engaged an outside, recognized security firm to conduct a full and complete investigation into what happened; and
Quickly taken steps to enhance security and strengthen our network infrastructure by re-building our system to provide you with greater protection of your personal information.

We greatly appreciate your patience, understanding and goodwill as we do whatever it takes to resolve these issues as quickly and efficiently as practicable.

Although we are still investigating the details of this incident, we believe that an unauthorized person has obtained the following information that you provided: name, address (city, state, zip), country, email address, birthdate, PlayStation Network/Qriocity password and login, and handle/PSN online ID. It is also possible that your profile data, including purchase history and billing address (city, state, zip), and your PlayStation Network/Qriocity password security answers may have been obtained. If you have authorized a sub-account for your dependent, the same data with respect to your dependent may have been obtained. While there is no evidence at this time that credit card data was taken, we cannot rule out the possibility. If you have provided your credit card data through PlayStation Network or Qriocity, out of an abundance of caution we are advising you that your credit card number (excluding security code) and expiration date may have been obtained.

For your security, we encourage you to be especially aware of email, telephone, and postal mail scams that ask for personal or sensitive information. Sony will not contact you in any way, including by email, asking for your credit card number, social security number or other personally identifiable information. If you are asked for this information, you can be confident Sony is not the entity asking. When the PlayStation Network and Qriocity services are fully restored, we strongly recommend that you log on and change your password. Additionally, if you use your PlayStation Network or Qriocity user name or password for other unrelated services or accounts, we strongly recommend that you change them, as well.

To protect against possible identity theft or other financial loss, we encourage you to remain vigilant, to review your account statements and to monitor your credit reports. We are providing the following information for those who wish to consider it:

U.S. residents are entitled under U.S. law to one free credit report annually from each of the three major credit bureaus. To order your free credit report, visit www.annualcreditreport.com or call toll-free (877) 322-8228.

We have also provided names and contact information for the three major U.S. credit bureaus below. At no charge, U.S. residents can have these credit bureaus place a “fraud alert” on your file that alerts creditors to take additional steps to verify your identity prior to granting credit in your name. This service can make it more difficult for someone to get credit in your name. Note, however, that because it tells creditors to follow certain procedures to protect you, it also may delay your ability to obtain credit while the agency verifies your identity. As soon as one credit bureau confirms your fraud alert, the others are notified to place fraud alerts on your file. Should you wish to place a fraud alert, or should you have any questions regarding your credit report, please contact any one of the agencies listed below.

Experian: 888-397-3742; www.experian.com; P.O. Box 9532, Allen, TX 75013
Equifax: 800-525-6285; www.equifax.com; P.O. Box 740241, Atlanta, GA 30374-0241
TransUnion: 800-680-7289; www.transunion.com; Fraud Victim Assistance Division, P.O. Box 6790, Fullerton, CA 92834-6790

You may wish to visit the web site of the U.S. Federal Trade Commission at www.consumer.gov/idtheft or reach the FTC at 1-877-382-4357 or 600 Pennsylvania Avenue, NW, Washington, DC 20580 for further information about how to protect yourself from identity theft. Your state Attorney General may also have advice on preventing identity theft, and you should report instances of known or suspected identity theft to law enforcement, your State Attorney General, and the FTC. For North Carolina residents, the Attorney General can be contacted at 9001 Mail Service Center, Raleigh, NC 27699-9001; telephone (877) 566-7226; or NCDOJ. For Maryland residents, the Attorney General can be contacted at 200 St. Paul Place, 16th Floor, Baltimore, MD 21202; telephone: (888) 743-0023; or Maryland Attorney General - Home Page.

We thank you for your patience as we complete our investigation of this incident, and we regret any inconvenience. Our teams are working around the clock on this, and services will be restored as soon as possible. Sony takes information protection very seriously and will continue to work to ensure that additional measures are taken to protect personally identifiable information. Providing quality and secure entertainment services to our customers is our utmost priority. Please contact us at 1-800-345-7669 should you have any additional questions.

Sincerely,
Sony Computer Entertainment and Sony Network Entertainment

This going to be shittier than **** that I can imagine.

**samuraiX** · 04-27-2011, 09:02 AM

wasnt this the answer of the hackers, forgot the name, when geohot and sony settled the ps3 case, they would bring down sony's network in suport of geohot

**samuraiX** · 04-27-2011, 09:51 AM

Quote:

Sony Admits Private PSN Info Has Been Stolen - All Of It

While it doesn't say much about what exactly happened, a new update to the PlayStation Network disaster reveals that somebody, somewhere, managed to break into the system and get hold of your private information - all of it.

If you're reading this, then you're almost certainly aware that over the past week, Sony's PlayStation Network has been suffering some rather severe technical difficulties. Sony is apparently still trying to figure out what's going on, or at the very least isn't yet ready to disclose all the facts, and there's still no ETA for a resumption of services. But in a new status update, Sony revealed that PlayStation Network and Qriocity user data has in fact been compromised. And not just your PSN ID.

"Although we are still investigating the details of this incident, we believe that an unauthorized person has obtained the following information that you provided: name, address (city, state, zip), country, email address, birthdate, PlayStation Network/Qriocity password and login, and handle/PSN online ID," Sony's Patrick Seybold wrote in a message being sent to all registered PSN account holders. "It is also possible that your profile data, including purchase history and billing address (city, state, zip), and your PlayStation Network/Qriocity password security answers may have been obtained."

"If you have authorized a sub-account for your dependent, the same data with respect to your dependent may have been obtained. While there is no evidence at this time that credit card data was taken, we cannot rule out the possibility," he continued. "If you have provided your credit card data through PlayStation Network or Qriocity, out of an abundance of caution we are advising you that your credit card number (excluding security code) and expiration date may have been obtained."

In other words, not to put too fine a point on it, whoever broke into Sony's systems got everything - everything. At this point, the situation appears to have shifted from a dispassionately amusing debacle to an absolute balls-out train wreck, certainly not helped by the fact that Sony may have sat on this information for nearly a full week before letting the public know just how badly it was compromised.

Sony advised PSN members to pay special attention to their credit card account statements and other related information, be alert for email, telephone and postal scams and change all passwords as soon as possible, which is to say, whenever Sony gets the PSN working again. It also regrets any inconvenience

source: The Escapist : News : Sony Admits Private PSN Info Has Been Stolen - All Of It

**zangief** · 04-27-2011, 09:57 AM

and samuraix actually SUPPORT people like this. fyi, these are the same people who get to discover how to pirate stuff.

**samuraiX** · 04-27-2011, 09:59 AM

Originally Posted by zangief

and samuraix actually SUPPORT people like this.

you seem to be confuse with ppl who stealing info and getting your games for free, you better read up more cause your comprehension is still very low

the one who pirate stuff are the ones who sells the stuff they got for free, the hackers that finds exploit in a console are different from hackers who finds exploit to steal, if they are one and the same they would be wasting time in finding an exploit in order just to play downloaded games, they would just hack directly to steal your info since exploit in making downloaded game run is different from exploit in your system security, again your still very low on the comprehension on technical computer stuff, why dont you just go back in your fighting games and finding out who is the lover of ryu and other trivia your good at

**Kyon-ko** · 04-27-2011, 11:58 AM

I'll pull out my credit card from PSN and resort to PSN cards when it gets back online. Damn.

Originally Posted by samuraiX

the one who pirate stuff are the ones who sells the stuff they got for free, the hackers that finds exploit in a console are different from hackers who finds exploit to steal, if they are one and the same they would be wasting time in finding an exploit in order just to play downloaded games, they would just hack directly to steal your info since exploit in making downloaded game run is different from exploit in your system security

The problem is, the people who made the exploit for the console:

Originally Posted by samuraiX

the one who pirate stuff are the ones who sells the stuff they got for free, the hackers that finds exploit in a console

...opened up PSN to abuse. Do you really think these guys aren't at fault? Of course, they are. It is the hackers who bust the console open. They know the implications of doing so, but decided '**** Sony. We want free games.' Add in the immature internet's supposed 'anti-corporation' mindset and we have this mess. Do you really think that we, the paying customers, deserve to be deprived of services that we pay for just because poor, whiny kids can't afford games for their PS3 and want to turn their PS3 into a PC because they can't afford a high-end one?

Okay, I'm mad at Sony for this security breach. But I'm angry at those who used this 'exploit' to 'reportedly' steal games and personal information. If you really think something good will come out of this, I say you better have your head checked.

Originally Posted by samuraiX

if they are one and the same they would be wasting time in finding an exploit in order just to play downloaded games, they would just hack directly to steal your info since exploit in making downloaded game run is different from exploit in your system security

Most stupid **** I heard from you in ages. CFWs once had access to PlayStation Network. Publishing PS3's root is like giving thieves a key to the bank's vault. CFWs or similar programs/methods most likely were used to obtain personal information. I don't want to give in to rumors but this is more likely to happen, but I doubt Sony would even disclose this if it was true.

**samuraiX** · 04-27-2011, 12:24 PM

Originally Posted by Kyon-ko

I'll pull out my credit card from PSN and resort to PSN cards when it gets back online. Damn.

The problem is, the people who made the exploit for the console:

...opened up PSN to abuse. Do you really think these guys aren't at fault? Of course, they are. It is the hackers who bust the console open. They know the implications of doing so, but decided '**** Sony. We want free games.' Add in the immature internet's supposed 'anti-corporation' mindset and we have this mess. Do you really think that we, the paying customers, deserve to be deprived of services that we pay for just because poor, whiny kids can't afford games for their PS3 and want to turn their PS3 into a PC because they can't afford a high-end one?

Okay, I'm mad at Sony for this security breach. But I'm angry at those who used this 'exploit' to 'reportedly' steal games and personal information. If you really think something good will come out of this, I say you better have your head checked.

Most stupid **** I heard from you in ages. CFWs once had access to PlayStation Network. Publishing PS3's root is like giving thieves a key to the bank's vault. CFWs or similar programs/methods most likely were used to obtain personal information. I don't want to give in to rumors but this is more likely to happen, but I doubt Sony would even disclose this if it was true.

how can jailbreaking the ofw on a console open the psn network to attack?

the psn network is on a separate network on its own, separate from your console

never have i heard stories that xbox or wii or ps3 info stored in the console was ever hi jacked from the console, this case its in the sony server not in the console

the ps3 root key were talking here is the signing of games, fooling the console to think it was sign by sony, hence it will run the iso games, it has nothing to do with the psn network

CFW ONLY AFFECTS YOUR CONSOLE NOT THE PSN NETWORK

you guys read up your things before you engage in technical aspects, your just sounding more stupid than ever

and in all the news article i have read, official from sony or from other sites, NEVER WAS THERE A MENTION THAT THE CAUSE OF THE PSN MELTDOWN WAS CAUSED BY OR DUE TO CFW OR HOMEBREW OR JAILBREAKING PS3, PSP

**dnniwa485** · 04-27-2011, 12:34 PM

Well they said that "External Intrusion" caused the PSN down for a week. They havent said that the said disaster happen because people jailbreaking their consoles, which is preety stupid if you just think about it.

**Kyon-ko** · 04-27-2011, 12:39 PM

Originally Posted by samuraiX

how can jailbreaking the ofw on a console open the psn network to attack?

This sentence is so wrong in many places, it's not funny.

Originally Posted by samuraiX

the psn network is on a separate network on its own, separate from your console

**** everybody knows.

Originally Posted by samuraiX

the ps3 root key were talking here is the signing of games, fooling the console to think it was sign by sony, hence it will run the iso games, it has nothing to do with the psn network

Like I said, it is a rumor, I don't take rumors as fact. But the Rebug CFW rumor is pretty plausible, it can happen.

Originally Posted by samuraiX

CFW ONLY AFFECTS YOUR CONSOLE NOT THE PSN NETWORK]

Said the hackers. They won't tell you the truth behind their exploits either. Do you really think hackers are as open as you thought they would be?

Originally Posted by samuraiX

and in all the news article i have read, official from sony or from other sites, NEVER WAS THERE A MENTION THAT THE CAUSE OF THE PSN MELTDOWN WAS CAUSED BY OR DUE TO CFW OR HOMEBREW OR JAILBREAKING PS3, PSP

If that was the cause, they won't say it.

**samuraiX** · 04-27-2011, 12:50 PM

Originally Posted by dnniwa485

Well they said that "External Intrusion" caused the PSN down for a week. They havent said that the said disaster happen because people jailbreaking their consoles, which is preety stupid if you just think about it.

tell that to dumb and dumber here

**dnniwa485** · 04-27-2011, 12:57 PM

@kyon-ko

you dont know what you were talking about the REBUG CFW....

here just a little knowledge for you...

REBUG is capable to use SP-INT or PROD-QA networks (which is totally separated from NP network... the actual PSN network) .... I dont see any of it why that REBUG CFW will cause the attack anyway. And sony is not stupid enough to let the Debug consoles to access all info of all their customers... I mean... hello.. if this was possible, they have done this already more earlier before the jailbreak scene happens.

-----------

ughh... this might be my last post on this thread since it's kinda pointless to argue with the people who dont know what they were talking. Its just like you were talking to a dog who only barks.

**samuraiX** · 04-27-2011, 12:58 PM

Originally Posted by Kyon-ko

This sentence is so wrong in many places, it's not funny.

**** everybody knows.

Like I said, it is a rumor, I don't take rumors as fact. But the Rebug CFW rumor is pretty plausible, it can happen.

Said the hackers. They won't tell you the truth behind their exploits either. Do you really think hackers are as open as you thought they would be?

If that was the cause, they won't say it.

sounding more stupid than ever, if you know the firmware of a console has limited capabilities on what it can do, much more bring down a psn network, the exploits are limited only to the firmware of the console, it cannot extend outside the console, it cannot run executable files, you making consoles in level with the pc that can run complicated program

if sony knows that the cause was due to cfw and will not tell the ppl then there as dumb as you, its their biggest chance to kill jailbreaking the ps3, psp or future console