Sony HACK ATTEMPT

We want to let you know that we have detected attempts on Sony Entertainment Network, PlayStation Network and Sony Online Entertainment ("Networks") services to test a massive set of sign-in IDs and passwords against our network database. These attempts appear to include a large amount of data obtained from one or more compromised lists from other companies, sites or other sources. In this case, given that the data tested against our network consisted of sign-in ID-password pairs, and that the overwhelming majority of the pairs resulted in failed matching attempts, it is likely the data came from another source and not from our Networks. We have taken steps to mitigate the activity.

Less than one tenth of one percent (0.1%) of our PSN, SEN and SOE audience may have been affected. There were approximately 93,000 accounts globally (PSN/SEN: approximately 60,000 accounts; SOE: approximately 33,000) where the attempts succeeded in verifying those accounts' valid sign-in IDs and passwords, and we have temporarily locked these accounts. Only a small fraction of these 93,000 accounts showed additional activity prior to being locked. We are currently reviewing those accounts for unauthorized access, and will provide more updates as we have them. Please note, if you have a credit card associated with your account, your credit card number is not at risk. We will work with any users whom we confirm have had unauthorized purchases made to restore amounts in the PSN/SEN or SOE wallet.

As a preventative measure, we are requiring secure password resets for those PSN/SEN accounts that had both a sign-in ID and password match through this attempt. If you are in the small group of PSN/SEN users who may have been affected, you will receive an email from us at the address associated with your account that will prompt you to reset your password.

Similarly, the SOE accounts that were matched have been temporarily turned off. If you are among the small group of affected SOE customers, you will receive an email from us at the address associated with your account that will advise you on next steps in order to validate your account credentials and have your account turned back on.

We want to take this opportunity to remind our consumers about the increasingly common threat of fraudulent activity online, as well as the importance of having a strong password and having a username/password combination that is not associated with other online services or sites. We encourage you to choose unique, hard-to-guess passwords and always look for unusual activity in your account.Article

Here's the article for those of you who don't want to copy the link.

Let's hope the activity doesn't extend beyond the 93,000 people.

Seriously people need to get a life, hackers are the worst species on this planet.

Looks like the new chief of security is going to have his work cut out for him lol.

This is what they should've done last time. And according to that article, it wasn't actually a hack attempt.

This is what they should've done last time. And according to that article, it wasn't actually a hack attempt.

el3m2tigre

*waits for people to blame sony for something they didnt do*campzor

[QUOTE="el3m2tigre"]

This is what they should've done last time. And according to that article, it wasn't actually a hack attempt.

deadruler08

[QUOTE="el3m2tigre"]

This is what they should've done last time. And according to that article, it wasn't actually a hack attempt.

deadruler08

Yes but it states that the username/password combos were obtained from a different source.

Seriously people need to get a life, hackers are the worst species on this planet.

HaloPimp978

i agree

*waits for people to blame sony for something they didnt do*campzor

Well the new system had major flaws as well. I would put my blame on sony.

Seriously people need to get a life, hackers are the worst species on this planet.

HaloPimp978

*waits for people to blame sony for something they didnt do*campzor

such as?

and before people blame sony for failing to protect security, read the article

these "hackers" took usernames and password combos from other sites which had been compromised and attempted to use all of them in a trial and error procedure to seize control of some PSN accounts. this yeilded results because some people use the same username and passwords for all sites and thus there are bound to be a good handfull of them who did the same with PSN. this has nothing to do with sony's security

[QUOTE="campzor"]*waits for people to blame sony for something they didnt do*CaseyWegner

such as?

[QUOTE="CaseyWegner"]

[QUOTE="campzor"]*waits for people to blame sony for something they didnt do*campzor

such as?

Here come the analogies again. :(

huh glad i can pitch 5$ keep this from happening SUCKAS!

huh glad i can pitch 5$ keep this from happening SUCKAS!

almasdeathchild

[QUOTE="almasdeathchild"]

huh glad i can pitch 5$ keep this from happening SUCKAS!

POPEYE1716

Sony's new security chief wasDirector of the National Cyber Security Centerfor the United StatesDepartment of Homeland Security. There is massive pressure on Sony to secure there info because they are making a big push with there new online entertainment services like PSN/ Qriocity etc. The massive hacking situation won't happen again .... a corporation like Sony would spend a ton of money so it doesn't happen again.

Can somebody explain what Sony could have done to prevent this mass-password-matching hacking? Then I know what Sony isn't doing to protect my PSN account.exiledsnake

Well, sony could only do so much. I mean if you're using the same user/pass on pretty much every other place and people get a hold of that information then it's pretty much your fault.

[QUOTE="CaseyWegner"]

[QUOTE="campzor"]*waits for people to blame sony for something they didnt do*campzor

such as?

like I predicted, virtually none of you are reading the article and have any clue what you are talking about

this isnt a fault of sony's firewall or a system security breach at all. this is people taking leaked usernames/passwords from unrelated sites and trying them, trial and error, to get some matches. they could easily do the same thing to XBL and they probably are doing that as we speak. not that microsoft would address such a thing considering how they ignored the rampant account phishing schemes for years.

like I predicted, virtually none of you are reading the article and have any clue what you are talking about

this isnt a fault of sony's firewall or a system security breach at all. this is people taking leaked usernames/passwords from unrelated sites and trying them, trial and error, to get some matches. they could easily do the same thing to XBL and they probably are doing that as we speak. not that microsoft would address such a thing considering how they ignored the rampant account phishing schemes for years.

arbitor365

for every body in this whole topic, minus like 4 people, you need to learn to read before you speak, this wasnt a security flaw, this was a social engineering hack

IE: the hackers obtained this login information from another site (not related to sony in any way), this means the following, the hackers used the login emails from another site, and tried to use those passwords from that other site to login to psn with them

THIS WAS NOT A SECURITY FLAW ON SONY'S PART

i was tempted to quote everyone who decided to not read the article, but i thought i may get moderated for it

so for future reference, everyone (minus like 4 people) in this thread should facepalm themselves a little bit right now

It's never gonna end tbh, tho idk what this says about sony that it happened againeboyishere

It didn't happen again, someone took a list of usernames and passwords from a seperate website then attempted to log-in on each of those usernames. Sony saw that someone was doing this and locked out each username that had been taken and sent an email to each of the users to change his or her password. Whats of note here is that Sony was able to lock out these people and felt the need to inform users. They weren't able to do that pre-April

[QUOTE="campzor"]*waits for people to blame sony for something they didnt do*savagetwinkie

PSN: in only does insecurity. :P

for every body in this whole topic, minus like 4 people, you need to learn to read before you speak, this wasnt a security flaw, this was a social engineering hack

IE: the hackers obtained this login information from another site (not related to sony in any way), this means the following, the hackers used the login emails from another site, and tried to use those passwords from that other site to login to psn with them

THIS WAS NOT A SECURITY FLAW ON SONY'S PART

i was tempted to quote everyone who decided to not read the article, but i thought i may get moderated for it

so for future reference, everyone (minus like 4 people) in this thread should facepalm themselves a little bit right now

linkin_guy109

This.

I have no doubt that people will blow this way over proportion. The Wall Street Journal already has an article on it...people need to learn to read carefully.

Wow!Someone attempted to get user names from another site to hack through PSN again.

Can somebody explain what Sony could have done to prevent this mass-password-matching hacking? Then I know what Sony isn't doing to protect my PSN account.exiledsnake

Apparently you can't read thoroughly...

He clearly states, that they LOCKED OUT the usernames that were being accessed, which he described were in the realm of 90,000 that had been acquired from a seperate website. Nothing on the network was actually hacked

[QUOTE="exiledsnake"]Can somebody explain what Sony could have done to prevent this mass-password-matching hacking? Then I know what Sony isn't doing to protect my PSN account.KevinPlanet

Apparently you can't read thoroughly...

He clearly states, that they LOCKED OUT the usernames that were being accessed, which he described were in the realm of 90,000 that had been acquired from a seperate website. Nothing on the network was actually hacked

I just learned back in the ol' days not to keep anything like my credit card info on my account.

If someone knows my name or where I live, sure have fun with that. xP

[QUOTE="KevinPlanet"]

[QUOTE="exiledsnake"]Can somebody explain what Sony could have done to prevent this mass-password-matching hacking? Then I know what Sony isn't doing to protect my PSN account.exiledsnake

Apparently you can't read thoroughly...

He clearly states, that they LOCKED OUT the usernames that were being accessed, which he described were in the realm of 90,000 that had been acquired from a seperate website. Nothing on the network was actually hacked

Its understandable. It seems most on here are in the fanboy-ish mood, rather than the read and comprehend one. The IGN article headline or subject line doesn't even bother to mention that they locked out the usernames.

It's never gonna end tbh, tho idk what this says about sony that it happened againeboyishere

[QUOTE="CaseyWegner"]

[QUOTE="campzor"]*waits for people to blame sony for something they didnt do*campzor

such as?

[QUOTE="campzor"][QUOTE="CaseyWegner"]

such as?

delta3074

Good god.... Analogy ad nauseum time?