-
Hey, guest user. Hope you're enjoying NeoGAF! Have you considered registering for an account? Come join us and add your take to the daily discourse.
PSN Hack Update: FAQs in OP, Read before posting
- Thread starter Killthee
- Start date
- Status
The_Reckoning
Member
That is too bad. Like others have said in this thread, this is happening a lot more frequently lately. Scary times, thankfully my bank will fix any possible credit card fraud, and my address is not correct. As long as my PSN account is still there I am fine.
Relax.
Relax.
Commanche Raisin Toast
Member
a lot of people seem absolutely determined to make sure sony is to blame for any and everything involved with this whole debacle regardless of how nonsensical, irrational, or illogical it is.
someone complained that sony said "a few days" and it's taken longer. would you rather them put the PSN back up and THEN figure out the damage and put up new security measures? it would be a fantastic idea. let the hackers back in to do more damage and wreck havoc on the infrastructure while you try to figure out what originally happened so you can protect against it.
i'm also seeing a lot of people blow this 'lack of security' way out of proportion. some people are acting as if they were the people that personally engineered the PSN, and are somehow knowledgeable of it's structure and design. really? you KNOW that sony set up their security based on the idea that PS3 is unhackable? enlighten us on how you are privy to such information.
some people seem more concerned about getting back on PSN to play a game online than anything else. to the point where the overall security and safety of the network isn't as important as getting prestige in black ops. then they turn around and talk about how poorly sony is handling things and how poor their security is. why not keep quiet (since blabbering on won't fix anything) and letting them fix things, and fix them the right way. not putting on a bandaid, but completely redoing it all and making sure it's even more secure. that's right, more SECURE. nothing is 100%. would you rather them put the PSN up after a few days with just a bandaid and the hackers ACTUALLY get your credit card info or leave it down untilt hey can construct some serious armor?
anyone remember WAMU's visa's all being canceled and replaced with mastercards? yep. tons of visa card numbers got compromised. we got no notice of it until suddenly "hey we canceled your card and are sending you a new one that's from a different company." i don't particularly like the way that was handled, but it's something that had to be done, and im not mad at WAMU for letting a hacker in, im mad at the hacker for hacking WAMU. that's why it's called hacking. it's not an open door. you get mad at the shooter, not the victim for not being 100% coated in kevlar.
and as far as sony 'keeping us in the dark' is concerned, sometimes you have to know when to release information and when to keep your mouth shut. with something as serious as personal information being access i think it's best to only speak when absolutely necessary and to not give out too much information- especially before there are any leads or suspects in the case. glad sony isn't being like mainstream news channels. they practically announce all of our military plans to the world down to small details.
/rantwithoutcallinganyonenames
the only items im focused on right now regarding what to do when PSN is back up are:
-changing my password.
-can i change my security questions? if so, im choosing alternate questions.
-(if they announced that they believe CC data was in fact taken) removing my CC data from my account, and then switch to using PSN cards for a bit.
i think they should implement something similar to steam guard, if not a blatant copy of it. (not that it was unique to begin with) a simple mechanism to produce a random code and email it to the user's email address to be typed in to activate a PS3 unit with the account or recover an account. those that used the same password on their PSN as their email address.... well... wasn't a very bright idea to use the same pw to begin with. everyone that has them the same should be changing it now if that's the case.
someone complained that sony said "a few days" and it's taken longer. would you rather them put the PSN back up and THEN figure out the damage and put up new security measures? it would be a fantastic idea. let the hackers back in to do more damage and wreck havoc on the infrastructure while you try to figure out what originally happened so you can protect against it.
i'm also seeing a lot of people blow this 'lack of security' way out of proportion. some people are acting as if they were the people that personally engineered the PSN, and are somehow knowledgeable of it's structure and design. really? you KNOW that sony set up their security based on the idea that PS3 is unhackable? enlighten us on how you are privy to such information.
some people seem more concerned about getting back on PSN to play a game online than anything else. to the point where the overall security and safety of the network isn't as important as getting prestige in black ops. then they turn around and talk about how poorly sony is handling things and how poor their security is. why not keep quiet (since blabbering on won't fix anything) and letting them fix things, and fix them the right way. not putting on a bandaid, but completely redoing it all and making sure it's even more secure. that's right, more SECURE. nothing is 100%. would you rather them put the PSN up after a few days with just a bandaid and the hackers ACTUALLY get your credit card info or leave it down untilt hey can construct some serious armor?
anyone remember WAMU's visa's all being canceled and replaced with mastercards? yep. tons of visa card numbers got compromised. we got no notice of it until suddenly "hey we canceled your card and are sending you a new one that's from a different company." i don't particularly like the way that was handled, but it's something that had to be done, and im not mad at WAMU for letting a hacker in, im mad at the hacker for hacking WAMU. that's why it's called hacking. it's not an open door. you get mad at the shooter, not the victim for not being 100% coated in kevlar.
and as far as sony 'keeping us in the dark' is concerned, sometimes you have to know when to release information and when to keep your mouth shut. with something as serious as personal information being access i think it's best to only speak when absolutely necessary and to not give out too much information- especially before there are any leads or suspects in the case. glad sony isn't being like mainstream news channels. they practically announce all of our military plans to the world down to small details.
/rantwithoutcallinganyonenames
the only items im focused on right now regarding what to do when PSN is back up are:
-changing my password.
-can i change my security questions? if so, im choosing alternate questions.
-(if they announced that they believe CC data was in fact taken) removing my CC data from my account, and then switch to using PSN cards for a bit.
i think they should implement something similar to steam guard, if not a blatant copy of it. (not that it was unique to begin with) a simple mechanism to produce a random code and email it to the user's email address to be typed in to activate a PS3 unit with the account or recover an account. those that used the same password on their PSN as their email address.... well... wasn't a very bright idea to use the same pw to begin with. everyone that has them the same should be changing it now if that's the case.
donkey show
Member
Yup it does.Beer Monkey said:
Jinfash
needs 2 extra inches
GAF went nuts over the Gawker debacle when private informations were compromised by Annon, almost everyone swore up and down that they'll never use the Network for the incompetence of those who run.
Fastforward to today, where millions of active users have been affected, maybe CC numbers too, by a failure of network security of bigger proportions, yet we almost have as many apologists as the angry users.
Stay classy, people.
Fastforward to today, where millions of active users have been affected, maybe CC numbers too, by a failure of network security of bigger proportions, yet we almost have as many apologists as the angry users.
Stay classy, people.
QuiteWhittle
Member
Thank the gods. Only my old, expired debit card was associated with my account.
I have compiled a few wikipedia articles for you to read so you don't look ignorant in your next post on the NeoGAF messaging board:SappYoda said:
http://en.wikipedia.org/wiki/Hacker_(computer_security)
http://en.wikipedia.org/wiki/Hacker_(programmer_subculture)
http://en.wikipedia.org/wiki/Hacker_(hobbyist)
criesofthepast
Member
lol greatXenon said:
Sony's PR strategy
Steve Youngblood
Member
GAF isn't one person.Jinfash said:
hosannainexcelsis
Member
spindashing said:
Sony's going to be spending tons of money on the fallout of this anyway; they're not going to give you money on top of that.
~Devil Trigger~
In favor of setting Muslim women on fire
Just monitor your CC activities and let them know if something looks fishyJimmy Stav said:
and wear a condom
So... I am on a password change spree and i log into my gmail account.
This account is the same account that is associated with my PSN and has a password that's very similar.
Apparently someone in china has logged in to my account.
Unknown China (122.137.22.75) Apr 8
Unknown China (119.39.77.63) Apr 8
Unknown China (114.138.195.248) Apr 17
This account is the same account that is associated with my PSN and has a password that's very similar.
Apparently someone in china has logged in to my account.
Unknown China (122.137.22.75) Apr 8
Unknown China (119.39.77.63) Apr 8
Unknown China (114.138.195.248) Apr 17
TheFLYINGManga_Ka
Member
I hope it's safe to just change e-mail/password, but I still get paranoid about this stuff.BeeDog said:
DoctorButt
Member
All my info stolen????
*gets butt-naked and covers self in honey*
*gets butt-naked and covers self in honey*
keltickennedy
Member
spindashing said:
FREE MONEY!!
spindashing said:
Only thing I have seen so far is this:
Q.16 I want my money back (subscription fee, content) since the PSN/Qriocity was not available.
When the full services are restored and the length of the outage is known, we will assess the correct course of action.
http://faq.en.playstation.com/cgi-bin/scee_gb.cfg/php/enduser/std_adp.php?locale=en_GB&p_faqid=5593
Tron 2.0 said:
the proper path would be to say "we just completed xx certification on our network and will be recertified every year to meet the latest acceptable security standards"
There are a few different certifications they can get against their network and data storage facilities.
slaughterking
Member
HehXenon said:
Sony's PR strategy
http://faq.en.playstation.com/cgi-bin/scee_gb.cfg/php/enduser/std_adp.php?locale=en_GB&p_faqid=5593
FAQ on the breach. it has some additional info
Q.11 Since when have PSN/Qriocity become unavailable and in which region?
PSN/Qriocity services have not been available since April 20 (US time) in all regions.
Q.12 How come it is taking so much time to resume the service?
We are taking the investigation seriously. We decided to keep the service down to allow us to conduct a thorough investigation and verify smooth operation of our network services.
Q.13 How serious is this? Have the hackers broken the security on PSN/Qriocity? Are you taking necessary measures to prevent such outage happening in the future?
Since this is an overall security related issue, we will not comment further on this case but we are working to restore and maintain the services, including countermeasures against future intrusions.
Q.14 When will the service resume?
We are taking the investigation seriously. We will keep the service down to allow us to conduct a thorough investigation and verify smooth operation of our network services but are working hard to resume the services as soon as we can be reasonably assured security concerns are addressed.
Q.15 Seems like SOE service was also not available/ suffering outage. Is this true? Is this due to the same reason as the PSN/Qriocity outage?
SOE's service is available although a service interruption due to an external attack did occur. A thorough investigation is ongoing.
Q.16 I want my money back (subscription fee, content) since the PSN/Qriocity was not available.
When the full services are restored and the length of the outage is known, we will assess the correct course of action.
Q.17 There seems to be some games that cannot be played even offline?
Depending on the game titles, but mainly PSN games, some may require access to PSN for trophy sync, security check, etc.
FAQ on the breach. it has some additional info
Q.11 Since when have PSN/Qriocity become unavailable and in which region?
PSN/Qriocity services have not been available since April 20 (US time) in all regions.
Q.12 How come it is taking so much time to resume the service?
We are taking the investigation seriously. We decided to keep the service down to allow us to conduct a thorough investigation and verify smooth operation of our network services.
Q.13 How serious is this? Have the hackers broken the security on PSN/Qriocity? Are you taking necessary measures to prevent such outage happening in the future?
Since this is an overall security related issue, we will not comment further on this case but we are working to restore and maintain the services, including countermeasures against future intrusions.
Q.14 When will the service resume?
We are taking the investigation seriously. We will keep the service down to allow us to conduct a thorough investigation and verify smooth operation of our network services but are working hard to resume the services as soon as we can be reasonably assured security concerns are addressed.
Q.15 Seems like SOE service was also not available/ suffering outage. Is this true? Is this due to the same reason as the PSN/Qriocity outage?
SOE's service is available although a service interruption due to an external attack did occur. A thorough investigation is ongoing.
Q.16 I want my money back (subscription fee, content) since the PSN/Qriocity was not available.
When the full services are restored and the length of the outage is known, we will assess the correct course of action.
Q.17 There seems to be some games that cannot be played even offline?
Depending on the game titles, but mainly PSN games, some may require access to PSN for trophy sync, security check, etc.
Slayer-33
Liverpool-2
DMeisterJ said:
The funny thing is that they'll have to mention it and "assure" people that they are doing all they can to prevent some shit like this from ever happening again.
I guarantee you that MS will take a huge jab at Sony mentioning XBL security compared to other "services"
Zeouterlimits
Member
Wow. Kind of earth shattering... Such a large amount of personal data..
Leatherface
Member
God damn it. >_<
railGUN said:
I don't have evidence, nor do I need to have any to support my beliefs. I believe that jail broken PS3's that had network access are what ultimately allowed "hackers" to poke and prod around the network and gain access to the necessary information they needed to steal said information.
Rebug PS3's simply strengthen this belief. If said hackers can gain access to otherwise unauthorized networks and prod around, then who's to say they can't look elsewhere and dig their way into other areas via the PS3 and homebrew?
Thank god for those emulators though.
Rated-Rsuperstar
Member
Marius_ said:
Yeah cause like no ones gonna buy it now. Whatever.
Auron_Kale
Member
Checked on my accounts, nothing so far other than the usual spam in my email inboxes. I've only used pre-paid cards or went through Amazon.com to replenish some funds in my wallet.
Once online, I'll probably just change my passwords and security questions. Other than that, I'll probably check on my bank account just in case - though PSN always rejected my cards anyways.
Once online, I'll probably just change my passwords and security questions. Other than that, I'll probably check on my bank account just in case - though PSN always rejected my cards anyways.
test_account
XP-39C²
LolXenon said:
- Status