Support NeoGAF

[RoadHazard]

I've received it on the e-mail accounts I use for my US and Japanese accounts, but not on the one I use for my main (EU) account. Kinda weird.

 

[yoopoo]

The folks over at the PSX-Scene forums are reporting that over 2.2 million customers' names, addresses, phone numbers and credit/debit card information is up for grabs to the highest bidder, including the crucial three digit CVV2 numbers.

Kevin Stevens, a Security Researcher, has been following the story and tweeted earlier, "Supposedly the hackers selling the DB says it has: fname, lnam, address, zip, country, phone, email, password, dob, ccnum, CVV2, exp date", but added that "it is not a rumor, it was a conversation on a criminal forum."

http://www.neowin.net/news/psn-database-with-22-million-credit-card-details-up-for-sale

 

[vilmer_]

omg DSLReports now? I've had an account there for 10+ years :/

 

[dragonfart28]

The folks over at the PSX-Scene forums are reporting that over 2.2 million customers' names, addresses, phone numbers and credit/debit card information is up for grabs to the highest bidder, including the crucial three digit CVV2 numbers.

http://www.neowin.net/news/psn-database-with-22-million-credit-card-details-up-for-sale

Everyone get your calculators ready.

2.2 Million * $381.00
= $838 Million

Spoiler

I'm sure the 2.2 Million figure is bogus, but what the hell.

 

[Rebel Leader]

http://www.neowin.net/news/psn-database-with-22-million-credit-card-details-up-for-sale

I don't know if I should even believe a bit of that.

 

[ClosingADoor]

Sony:

out of an abundance of caution we are advising you that your credit card number (excluding security code, sometimes called a CVC or CSC number) and expiration date may have been obtained.

Neowin:

"Supposedly the hackers selling the DB says it has: fname, lnam, address, zip, country, phone, email, password, dob, ccnum, CVV2, exp date", but added that "it is not a rumor, it was a conversation on a criminal forum."

Which one to trust...

 

[Metalmurphy]

Does Sony even ask for CVV2?

 

[itxaka]

http://www.neowin.net/news/psn-database-with-22-million-credit-card-details-up-for-sale

Nobody should store the cvv number.is forbidden by visa/mastercard etc..

so its probably fake

 

[Ickman3400]

Which one to trust...

I'm certainly not going to trust the company who fucked up in the first place when there's no third party to check on them. It's like when my internet provider tells me to use their speedtest instead of something else when the tech guy is here to fix it. Yeah no thanks.

Not that it means or changes anything with Sony though. I just choose not to believe them and take my own security measures like changing the card.

 

[BeautifulMemory]

Which one to trust...

I would treat it as if everything is taken. With much amount of information, without or without the security number, they can open up so many credit cards in your name anyway

 

[chubigans]

Does Sony even ask for CVV2?

I can't remember ever needing to enter it.

 

[MalboroRed]

http://www.neowin.net/news/psn-database-with-22-million-credit-card-details-up-for-sale

There is a forum for criminals?

 

[Rebel Leader]

Does Sony even ask for CVV2?

I believe not. I don't remember ever putting that in.

 

[phosphor112]

Has this been posted? http://psx-scene.com/forums/f6/psn-database-containing-2-2million-credit-cards-now-up-sale-85702/

Complete bullshit. Kill off all of them just for spewing this shit like fact.

"Sell back" a spreadsheet of data that SONY already has? Really? Are they fucking kidding?

 

[Zoe]

Does Sony even ask for CVV2?

Nope

 

[Vamphuntr]

Does Sony even ask for CVV2?

Don't think so.

 

[larvi]

Another company hacked and reported it. Shit is getting crazy.

http://news.cnet.com/8301-27080_3-2...rss&subj=news&tag=2547-1_3-0-20&dlvrit=142337

DSLReports says member information stolen

Sucks, but at least it appears they were on the ball regarding notifying affected customers about the breach:

"The data was taken on Wednesday afternoon, recognized and blocked at 7 p.m., and by Wednesday evening all the active accounts received e-mail notifications advising them to change their password if they share it with that e-mail address and all passwords were changed at that time,"

 

[itxaka]

There is a forum for criminals?

A forum? There is a lot more than one.

 

[teruterubozu]

http://www.neowin.net/news/psn-database-with-22-million-credit-card-details-up-for-sale

There's an ebay for criminals?

 

[Rebel Leader]

A forum? There is a lot more than one.

The entire internet!

 

[WretchedTruman]

There is a forum for criminals?

initially not available to juniors.

 

[Salaadin]

I believe not. I don't remember ever putting that in.

FAQ in the OP:


Q: Was my credit card data taken?
A: While all credit card information stored in our systems is encrypted and there is no evidence at this time that credit card data was taken, we cannot rule out the possibility. If you have provided your credit card data through PlayStation Network or Qriocity, out of an abundance of caution we are advising you that your credit card number (excluding security code) and expiration date may have been obtained. Keep in mind, however that your credit card security code (sometimes called a CVC or CSC number) has not been obtained because we never requested it from anyone who has joined the PlayStation Network or Qriocity, and is therefore not stored anywhere in our system.

If someone is saying that they have a database with those numbers, its gotta be fake because we never gave those numbers.

 

[Rebel Leader]

There's an ebay for criminals?

I shall call it.... Wal-mart

 

[itxaka]

The entire internet!

Well I would actually call those forums with enabled signature criminals.

 

[Ickman3400]

There is a forum for criminals?

Well I was googling a question I had on steam the other day and one of the responses was some hack site and the basic description was apparently a post openly talking about how to hack and steal steam accounts.

So yeah I guess so.

 

[Xena]

initially not available to juniors.

But is it available to those who know how to set up their avatar correctly?

 

[MustacheBandit_]

awwww now that we find out our CC #s are safe, what are the doom and gloomers going to stir paranoia about now?

looks like the entertainment is going to be slowly fading away from the thread....

 

[gcubed]

awwww now that we find out our CC #s are safe, what are the doom and gloomers going to stir paranoia about now?

looks like the entertainment is going to be slowly fading away from the thread....

The fact that passwords and security questions were leaked is still bad

 

[WretchedTruman]

But is it available to those who know how to set up their avatar correctly?

 

[Metalmurphy]

The fact that passwords and security questions were leaked is still bad

Yeah, now we're gonna get "my email got stolen" reports instead of "someone charged $1000 at a gas station in China" reports.

 

[Jal]

There is a forum for criminals?

Why not? You can openly talk about pirating in the GAF Gold members forum.

 

[Rebel Leader]

awwww now that we find out our CC #s are safe, what are the doom and gloomers going to stir paranoia about now?

looks like the entertainment is going to be slowly fading away from the thread....

Rest assured that I have delt with the persons when quelling them...*heh*.... was out of the question

 

[itxaka]

Nope

Uh why do you guys keep saying that?
They ask for it as its required to authorize a transaction, they just call it differently (card security code or something like that)
Cvv is mandatory for any sale where the card is not show or used physically.

 

[Rebel Leader]

PSNPassword twitter

I laughed:
Just looked up @michaelpachter's PSN password. It was "alwayswrong"

 

[gcubed]

Uh why do you guys keep saying that?
They ask for it as its required to authorize a transaction, they just call it differently (card security code or something like that)
Cvv is mandatory for any sale where the card is not show or used physically.

I have never once been asked for the security code when buying on psn... maybe I did

 

[Deleted member 30609]

my heart goes out to the poor Socom developers. I don't play it, but man, this must just be crushing for them.

 

[itxaka]

I have never once been asked for the security code when buying on psn

Mastercard?

I had to input the cvv several times on the European an American store as well.

 

[gcubed]

my heart goes out to the poor Socom developers. I don't play it, but man, this must just be crushing for them.

No kidding talk about bad timing

 

[Jintor]

There is a forum for criminals?

I remember reading a report about them back in the day. It's not exactly unfeasible.

 

[FirstInHell]

awwww now that we find out our CC #s are safe, what are the doom and gloomers going to stir paranoia about now?

looks like the entertainment is going to be slowly fading away from the thread....

Did Sony finally confirm that the Credit Cards did not get stolen?

 

[MustacheBandit_]

ok my backlog of single player games is complete. go ahead and fire up the PSN now please!

 

[gcubed]

Mastercard?

I had to input the cvv several times on the European an American store as well.

I'm pretty sure my MC is on there. Ill have to edit that because its been so long since I did it but you have me doubting what I remember

 

[DMeisterJ]

Yeah, I'm not sure where people got the idea that you don't enter your CSC, cause I can distinctly remember entering it a few times...

 

[Metalmurphy]

PSNPassword twitter

I laughed:
Just looked up @michaelpachter's PSN password. It was "alwayswrong"

The hell is that? Any of those people actually confirmed the passwords?

Meh, that's gotta be bs.

 

[MustacheBandit_]

Did Sony finally confirm that the Credit Cards did not get stolen?

did you confirm if any of your playstations sold on ebay yet?

 

[Rebel Leader]

The hell is that? Any of those people actually confirmed the passwords?

It's a FAKE. Just for laughs.

 

[FirstInHell]

Yeah, I'm not sure where people got the idea that you don't enter your CSC, cause I can distinctly remember entering it a few times...

Same here.

 

[WonkyPanda]

"Spokesmen for Wells Fargo & Co., American Express Co. and MasterCard Inc. said they were monitoring cardholder accounts and hadn't seen unauthorized activity relating to Sony."


http://www.sfgate.com/cgi-bin/article.cgi?f=/g/a/2011/04/28/bloomberg1376-LKC6AD6JTSED01-5ANLS1GF40IM03V2RP1Q7B7PI8.DTL

 

[DavieC726]

Technically they are right, to anyone who joined the PSN no big credit card stuff was obtained, but if you ever brought anything off of it, which most people probably have, This isUndisputed proof that All Credit Cards had the CVV2 information on the PSN Network.

 

[Metalmurphy]

Yeah, I'm not sure where people got the idea that you don't enter your CSC, cause I can distinctly remember entering it a few times...

"(excluding security code) and expiration date may have been obtained. Keep in mind, however that your credit card security code (sometimes called a CVC or CSC number) has not been obtained because we never requested it from anyone who has joined the PlayStation Network or Qriocity, and is therefore not stored anywhere in our system."