-
Hey, guest user. Hope you're enjoying NeoGAF! Have you considered registering for an account? Come join us and add your take to the daily discourse.
PSN Hack Update: FAQs in OP, Read before posting
- Thread starter Killthee
- Start date
- Status
electroshockwave
Member
StuBurns said:
Why would they? I can't imagine Valve sharing Steam details with Sony and I don't see why they would need to.
Shadowlink
Member
DAMN IT! Fuck the hackers and Sony. Guess I'll change my card information ASAP.
Mama Robotnik
Member
Degen said:
Needs to be Holy Water.
robotzombie
Member
Vestal said:
Is this real? Because if it is, it could literally be the dumbest thing ever said. Who are you, Yogi Berra?
offshore said:
...I'd say a VAST majority of people know what's going on.
Googling "why is PSN down" has been like THE top search.
Besides, I'd rather have accurate information received through a proper investigation (like they did) than an early e-mail creating a mass panic situation.
JasonMCG said:
It is possible they took a few days to ascertain the fact (Lot's of information and traffic for a 70+ million account network, especially after a DDOS).
Given that they haven't found out whether someone has gotten the CC numbers yet, but has released the info anyway. This may be the earliest point for them to act.
TrAcEr_x90
Member
So should I get on my ps3 and delete all info? is it worth it now, or they already got everythign?
Ah okay, so it seems likely that the data wasn't encrypted then, bloody hell Sony. The reason why I asked is because there have been a number of data leaks in the past month or so, Chase being one of them (sorry I can't find the others, they are all buried in this fast-moving thread) and I was just wondering if this would be purely coincidental.Fireye said:
Dreamgazer
Member
FINALBOSS said:
Someone will come and defend
In the last thread there was even someone saying that hackers don't really even want to take out credit cards.
They just want to prove a point, and they love us.
Macho Madness
Member
Dont do that, FOR THE LOVE OF GOD MAN WE DONT KNOW WHAT IT WILL DO. INNOCENT PEOPLE MAY DIE.TrAcEr_x90 said:
SapientWolf
Trucker Sexologist
It's unnecessarily grisly but other than that it seems fairly astute.pantyhelmet said:
Oh crap.
They actually took every bit of personal info?
That makes me sick.
Guess free PSP2s for everybody to compensate... instant userbase.
But in all seriousness this is really bad. I think there are hundreds of people at Sony having very bad nights about this. Sucks. Wonder if they will make the full details of a future investigation into the crime public (ie. what could have been done to prevent this)
Oh just realized that if Sony made mistakes in any way they will get their asses sued of by some money smelling mom with a class action law suit. Not good news. At all.
They actually took every bit of personal info?
That makes me sick.
Guess free PSP2s for everybody to compensate... instant userbase.
But in all seriousness this is really bad. I think there are hundreds of people at Sony having very bad nights about this. Sucks. Wonder if they will make the full details of a future investigation into the crime public (ie. what could have been done to prevent this)
Oh just realized that if Sony made mistakes in any way they will get their asses sued of by some money smelling mom with a class action law suit. Not good news. At all.
Geohot and co only cared about opening the PS3 to a point where they would be free to use it as they wished. They weren't in it for the money, some were there because it's an interesting challenge, others (like Geohot imho) more for personal fame I guess.EricHasNoPull said:
The ones who compromised PSN are in it only for the money.
The first type of hackers have an idealistic view of the world where everything should be open and free (not as in no money involved, but as in freedom). It's a commendable view, and unfortunately quite far from reality. The second type are thieves. Plain and simple.
Treefingers
Member
smhJax said:
Wow. This is unbelievable. My brother used his card to purchase stuff from the PS store, but that was before he was victim of another fraud and someone else spent £400 on his account and had a new one sent to him. He hasn't used it since. Lucky, lucky. I play on PSN and PS3 occasionally but I never buy anything on there, only on 360.
But still, don't feel comfortable that personal information is out there.
But still, don't feel comfortable that personal information is out there.
For everyone freaking out at sony and claiming this was handled so "terribly"
Lets be realistic here and look at the timeline of events:
Last week Sony detects an intrusion on their network, they begin an investigation to find out how serious the intrusion is. Someone has to make the heavy financial decision to figuratively (and literally) pull the plug on the PSN in order to further protect themselves, developer's and the consumers. I am sure that decision was not easy to make but necessary.
Then they begin an investigation to determine how the intrusion was made and take the necessary steps in order to resolve this issue.
This of course all takes place leading into a Easter Long Weekend where even employees at Sony have lives, and probably either were gone for holiday's or going to visit relatives or whatever normal people do for long weekends.
I think that's a big key in what people are missing, it happened over a long weekend, when a large number of the team was very likely unreachable, including the PR department, for many Tuesday (today) is the first day back to work.
So they being last Thursday / Friday investigating the issue, trying to determine the severity of the attack, what information was at risk, what information was made available etc..
The weekend comes into play, given the state of emergency, I am sure Sony had employees working around the clock, they discover the extent of the issue and what information was taken.
Come Monday they are trying to get security people into work, get them up to speed on what happened, get meetings underway on what to do to deal with it, and decide 100% for sure how to move forward.
Finally Tuesday morning, PR people are back to work, major bosses are back to work, everyone is brought up to speed, a head honcho makes the saddening decision that they need to tell the consumers what has happened, and finally they come forward and let us know.
Really how else could it have gone? These decisions aren't light hearted decisions, they have heavy repercussions and nobody at Sony wanted to have to come forward and tell everyone what happened without being 100% positive because of the obvious (as evening news can tell) negative impact of the news.
Lets be realistic here and look at the timeline of events:
Last week Sony detects an intrusion on their network, they begin an investigation to find out how serious the intrusion is. Someone has to make the heavy financial decision to figuratively (and literally) pull the plug on the PSN in order to further protect themselves, developer's and the consumers. I am sure that decision was not easy to make but necessary.
Then they begin an investigation to determine how the intrusion was made and take the necessary steps in order to resolve this issue.
This of course all takes place leading into a Easter Long Weekend where even employees at Sony have lives, and probably either were gone for holiday's or going to visit relatives or whatever normal people do for long weekends.
I think that's a big key in what people are missing, it happened over a long weekend, when a large number of the team was very likely unreachable, including the PR department, for many Tuesday (today) is the first day back to work.
So they being last Thursday / Friday investigating the issue, trying to determine the severity of the attack, what information was at risk, what information was made available etc..
The weekend comes into play, given the state of emergency, I am sure Sony had employees working around the clock, they discover the extent of the issue and what information was taken.
Come Monday they are trying to get security people into work, get them up to speed on what happened, get meetings underway on what to do to deal with it, and decide 100% for sure how to move forward.
Finally Tuesday morning, PR people are back to work, major bosses are back to work, everyone is brought up to speed, a head honcho makes the saddening decision that they need to tell the consumers what has happened, and finally they come forward and let us know.
Really how else could it have gone? These decisions aren't light hearted decisions, they have heavy repercussions and nobody at Sony wanted to have to come forward and tell everyone what happened without being 100% positive because of the obvious (as evening news can tell) negative impact of the news.
FINALBOSS said:
http://www.google.com/trends?q=psn
It isn't the top, but it is seeing a large uptick.
pantyhelmet
Banned
SapientWolf said:
how? if you lose your key, why would you go about your own key why would you go about your business, you can't get in either. -__-
Garjon said:
It's probably a coincidence. Systems like PSN and Chase are so dissimilar that while they may have parts in common (ie; using apache, or some other common service), they probably wouldn't be exploited in the same way.
We don't know what data has been stolen, and if it is still encrypted or not. Sony is taking the safe route at this time and saying:
"We got our shit compromised. We don't really know exactly what was taken, but it COULD HAVE BEEN ____________"
Loudninja said:
joke post?
We get it people, the hackers are dicks
Regardless, there is NO excuse for the way Sony has behaved.
If it was the fact that they were morons, or if they were hoping they could keep it quiet, either way it is inexcusable. Totally and completely inexcusable.
Uno Venova
Banned
That means either Sony's security measures suck or the person who got in was very skilled and probably pissed at what Sony has been doing to Geohot and other hackers. I mean the service did go 5 years without a breach like this I can't imagine their measures being so bad yet it took this long to happen.Mama Robotnik said:
EricHasNoPull said:I donno dude, not trying to be a dick, ARK's points are a lot more clear and straight to the point, I couldn't really make anything out of Blimblim's..."rescue"
"hacker's with different goals"??? I donno what that means, that just sounds vague and subjective to me. Who is you or me or Blim to confirm the hacker's "goals"?
Anyway what's done is done, just let me know what will make you sleep better at night, blaming on Hackers fully or blaming Sony or half and half? let me know and I'll go with that, because you know, that will hopefully get my $55 back that I had in my PSN wallet
What do you want me to tell you? Clear and straight to the point is exactly that. Just black and white. ARK is mixing videogame hackers, cfw users and eastern europe organized crime hackers in one group. Do you think that all so called hackers share the same morals? That they are all after your personal data and cc info while they trying to hack a GBA? If your answer is no then we agree.
About your sleep and you $55. I'm pretty sure that Sony should be able to or find a way to get your money back to you. I wouldn't loose sleep over this.
faceless007
Member
(Sorry for the repost) Question: I don't use the same password everywhere but I do use a variant of the same password everywhere that changes depends on the site, so if they got my password in plaintext, it's conceivable they could derive how it's modified and apply the steps when trying other sites and I'm screwed. But if Sony just stores a hash I'm fine.
Am I screwed?
Am I screwed?
Chuck (Old)
Banned
Sony's going to continue being the laughingstock of the industry for years to come. So much fail this generation...
CrushDance
Banned
I think people are missing that point that many are saying. Geohot broke the PS3's security and everyone was warned way ahead of time(By Sony themselves even) that people on custom firmware could be susceptible to...well, whatever specific firmware could do. Fast forward and we get several new groups popping up with their own firmwares. The people on pSXscene start abusing devnet. Someone, somewhere notices a crack in the system and uses it to get at this information.
Now Geohot isn't to blame per-se. But it does explain why Sony came down so hard on him. Clearly there were some worse vulnerabilities in the system or things that they wanted to keep hidden for a purpose. In this case, protecting user information or whatever else may be there. They should have fixed whatever security issues they had long before they even sued Hotz as a precaution.
Sometimes things are meant to be locked away for a reason. It's Sony's fault for trusting in client side security. And I'm sure it's something that they will definitely be against for the PS4. So, good luck getting anything near "open" as the PS3 was after this catastrophe.
Now Geohot isn't to blame per-se. But it does explain why Sony came down so hard on him. Clearly there were some worse vulnerabilities in the system or things that they wanted to keep hidden for a purpose. In this case, protecting user information or whatever else may be there. They should have fixed whatever security issues they had long before they even sued Hotz as a precaution.
Sometimes things are meant to be locked away for a reason. It's Sony's fault for trusting in client side security. And I'm sure it's something that they will definitely be against for the PS4. So, good luck getting anything near "open" as the PS3 was after this catastrophe.
pantyhelmet
Banned
how dare you have a functioning brain. >__<upJTboogie said:
- Status