PSN Phasing Back Into Existence With Enhanced Security

Low Key

New member
May 7, 2009
2,503
0
0
Easton Dark said:
Low Key said:
I like how they say "enhanced" this and that but doesn't detail what enhancements were made. Do they think we're all computer newbies or something?
Why would you detail changes to a security system that was broken into already?
Hold on now. When I have to update my OS with security features, I get a detailed list of what went in it. It's available to anyone.

I'm not asking for specific detail, but something more than "enhanced" would be appreciated, especially in a situation like this.
 

RelexCryo

New member
Oct 21, 2008
1,414
0
0
Sapient Pearwood said:
Donnyp said:
I don't see why so many people think it was sonys fault. If you make an unbreakable shield someone will make a sword that can break it. It will go on forever. They probably already had security and all that but someone got through it and that made them beef it up. And anyone with half a brain would know that the company involved isn't nearly as in the wrong as the people who stole the information int he first place.
Sadly it seems most gamers don't have half a brain especially when they're complaining but yeah you're absolutely right. Well we get free stuff and for all we know our personal data is fine, yay.
Except it was not a very strong shield. They did not encrypt User Data. The issue is not simply that hackers got in, but that Sony's defensive measures weren't very strong. They completely failed to encrypt user data. The issue here is not that Sony failed to create a totally invincable system, but that they failed to create even mediocre defenses.

Donnyp said:
Scars Unseen said:
Donnyp said:
Scars Unseen said:
Enhanced levels of data protection and encryption
So... what? Are we storing the plain text user data as anagrams? That would be a bit of an improvement.
Everything i have read says that the information was encrypted. Don't know why it wouldn't be. There is no proof to verify that it wasn't encrypted either.
Sure, there's no proof, unless you want to count Sony's own words.

From http://blog.us.playstation.com/2011/04/27/qa-1-for-playstation-network-and-qriocity-services/

The personal data table, which is a separate data set, was not encrypted
I am a big enough man to admit i was wrong. I just got so used to reading people say No data was encrypted so often i skipped over the word User. I'm sorry.

And i had already read that and was about to quote it saying "look says it is encrypted for the stuff that matters" but i are slow right now i guess lol.
 

callmegreen

New member
Jan 29, 2011
162
0
0
i always use prepaid so i could care less but i think i smell some davinci disappearance in mah future .... maybe some fallout 3 stuff
 

KoudelkaMorgan

New member
Jul 31, 2009
1,365
0
0
I love this, even tho I know all my data was leaked. Why? Its because of how unbelievably stupid you would have to be to commit this crime in the first place. The main reason people don't go out and steal something that is one of a kind, or steal millions and millions of junk items from one store is that its pretty damn hard to turn around and sell that stuff.

Its not like stealing a TV from the back of a truck, its a crapload of personal data from people in countries all over the world taken from the same source, and only relevant to that source. There are probably thousands of companies that already know all the information they may have taken as it is.

Who are they going to sell it to? email spammers? Seriously who the hell is going to pay anyone for disposable email addresses, or real ones when only the bottom .000001% of people actually open spam emails as it is. And no one has any hard time getting them b4 this.

Address? Unless they want to go door to door mugging PS3 users specifically or sending (at their cost) junk mail then how is that an issue?

Same goes for phone #. Billing info would also require knowing what bank you had your debit card at, and the pin, and the 3 digit v code to potentially mess with you.

Credit card is much the same although they would know which company your card belonged to.

Now unless they want to road trip to fraudulently use your info to purchase something (assuming they got around everything else) the sudden usage of your card in a state/country you have never been b4 should tip off anyone investigating this since the same info stolen is the same list of people who's accounts will be monitored for anomalous usage by investigators. Assuming the investigators aren't complete morons.

So basically the easiest way to make a quick profit from this stunt is to raid everyone's wallet and try to buy as much psn stuff as possible b4 everyone changes their passwords right? Too bad Sony killed the store right away, so no one could have made a mad binge of fraud like that.

Aside from that I suppose if you actually used exactly the same passwords and security answers etc as your other (financial) accounts then I guess you might have a reason to worry. Thought I'm sure your bank would also provide a measure of security there as well since the hackers wouldn't have gotten EVERY thing they would need to raid your savings or whatever.

When PSN comes back up hopefully they won't be stupid enough to try and buy crap with stolen info b4 everyone is forced to change the password. Since everyone IS going to have to change their password and the hackers can easily get in b4 you and change it b4 you do prepare for mass Q_Q.

Lastly I would think that any other, or even the same, hackers out there would view the new and ZOMG improved Sony security as something that simply HAD to be fucked with. I mean really, if you are already stupid enough to grab at that low hanging fruit, how could you resist coming back for more? Imagine, you could be the guy that ruined Sony! Or ya know, you could try doing something worthwhile like putting porn on all the live feed monitors at fox news. Seriously no one does anything amusing with their hacking anymore.

EDIT: Oh and I'm sure that by making every PS3 user unable to play their games online they have royally pissed off some portion of the hacker community and thereby made themselves an enemy of those that might have been otherwise supportive. "Oh you messed with company x? Nice! Oh you are the dick that made me unable to play killzone online? The feds are on their way to your location *****, and I froze all your bank accounts :D"
 

kebab4you

New member
Jan 3, 2010
1,451
0
0
Milo Malo said:
if there is people out there that can do a Ddos attack to PayPal, MasterCard, and Swiss bank PostFinance im sure they can take out a videogame company infrastructure
Yes because people that can run LOIC are now apparently capable of taking down a video game company´s infrastructure.
 

EchetusXe

New member
Jun 19, 2008
1,046
0
0
Each territory will be offering selected PlayStation entertainment content for free download. Specific details of this content will be announced in each region soon
oooh, lets see. USA region gets free Portal 2 download - AWESOME! Japan and Australia get free LittleBigPlanet download - neat.

What about the UK? *come on cross game chat* And it is... a free Prince William and Princess Catherine Royal Wedding game. Great. Thanks Sony. You really know your regions :(
 

EchetusXe

New member
Jun 19, 2008
1,046
0
0
BanthaFodder said:
Good. They say that it'll be back by the end of May by the latest.
nah, the store and things will be back up by the end of the month (needs extra padlocks). Online gaming and friend lists and junk will be back pretty soon next week I believe.
 

Tony2077

New member
Dec 19, 2007
2,984
0
0
i'll have to wait and see if there is any plus content i care about and it should be on sometime this week just not all of it
 

EchetusXe

New member
Jun 19, 2008
1,046
0
0
swytchblayd said:
I don't expect a few bonuses tossed in to win everyone with half a brain back; a better way would be to get on their hands and knees and start begging for people not to leave them behind >.>
At the press conference they got their top brass to give 'deep bows'. The Japanese are not much for grovelling about on the floor, crying and pleading with you for mercy, so I'm afraid you will have to be satisfied with the bowing.

I for one I am quite happy with the bowing. I don't recall Goldman Sachs or BP or Lehman Brothers doing any bowing. They may have bent over to show us where on the arse we can kiss them but definitely no humble bowing.
 

Kakashi on crack

New member
Aug 5, 2009
983
0
0
Roboto said:
"Added automated software monitoring and configuration management to help defend against new attacks"

Decoded: Turned on logging

"Enhanced levels of data protection and encryption"

Decoded: Enabled SSL

"Enhanced ability to detect software intrusions within the network, unauthorized access and unusual activity patterns"

Decoded: Hired a person to read the logs

"Implementation of additional firewalls"

Decoded: Installed a firewall
Ahh the truth of this whole post and its relevence to Sony's utter lack of security XD

I won't lie, they actually teach what I'm going to say at most companies that rely on servers and such, (though I suppose Sony was hell-bent on claiming to be unhackable, so they never bothered with teaching it.) but most satellite, internet, phone companies, etc. teach their employees that if someone is dedicated to trying to hack your system, it doesn't matter what you do, someone will eventually get through. The best course of action is to have enough security set up to keep faith in the customers, and find a way to either cover up, or fix as much damage as possible while fixing the problem in the first place.
 

Nieroshai

New member
Aug 20, 2009
2,940
0
0
So does the ability to play games also mean I can link to Steam and play Portal Co-op as well as get my PC copy?
 

EchetusXe

New member
Jun 19, 2008
1,046
0
0
KoudelkaMorgan said:
The main thing is that the hacker has all the details now, all in one neat little package. I know lots of people, especially here, were going "SHIT, CANCEL ALL CARDS, MOVE HOUSE, BUY GUNS, THE HACKERS ARE COMING". But really the main threat is the people who are not so cautious. With that information they can send out e-mails and make telephone calls saying:

"Hello Mr Jones, Sony here. As you may be aware the Playstation Network was compromised earlier this month and users account details here compromised."
"Oh mah gawd!"
"Yeah I know right, lol. Anyway we here at Sony are working hard to ensure users accounts are not compromised. Now, with your help I will just make sure your account details are not being used against you. ok?"
"OK, when will I be able to play Call of Duty online?"
"Soon, lol. So just to confirm this is you, are you Charles Jones of 13 Noob Street?"
"Yeah"
"Ok, one more security question. What is the three digit security number on the credit card you used with us?"
"errrm, 735."
"Thanks. Really, thank you Sir."

It is that simple. Of course it is easier, cheaper, though less convincing to send out thousands of e-mails asking pretty much the same thing. Which is why Sony said "WE will NEVER ask you for your personal details".

Maybe this will never happen but it is possible, especially if they managed to figure out the Credit Card numbers and expiry dates (which there is no evidence of yet).
 

wooty

Vi Britannia
Aug 1, 2009
4,252
0
0
It's good to see that normality is slowly returning to proceedings.

I'm also quite happy to hear that news steps are being taken to help in the line of this not happening in the near future. Though I would also suggest that they remove the ability to directly use credit\debit cards and go the Microsoft way with the pre-paid cards. It may not be practical or quick, but at least it will put a lot of peoples minds at ease.
 

coldshadow

New member
Mar 19, 2009
838
0
0
Tiswas said:
Just in case people don't realise this regarding the free PS+

It's for a MONTH. After that it continues automatically. You have to manually set for it to not roll over.

I can see A LOT of people not realising this and ending up being charged for what is a 'free' thing.


Personally I woulda been happy with a £5 off voucher for anything in the store.

you have to put your credit card info and all that in again for it to charge you so no one is going to get charged after word unless they sign up for the subscription, the play station plus will probably be automatically put on the account without needing them to give any information.
 

Deverfro

New member
Aug 2, 2009
315
0
0
Seems like a good idea, But I really just wanna know if my identity is safe and there isnt some bloke in russia using my details to buy wooly hats and a plane ticket to god knows where.
 

Denamic

New member
Aug 19, 2009
3,804
0
0
Chance that we will actually get any worthwhile freebies: Close to nil.
Sony isn't exactly know for their goodhearted generosity.
 

Low Key

New member
May 7, 2009
2,503
0
0
wooty said:
It's good to see that normality is slowly returning to proceedings.

I'm also quite happy to hear that news steps are being taken to help in the line of this not happening in the near future. Though I would also suggest that they remove the ability to directly use credit\debit cards and go the Microsoft way with the pre-paid cards. It may not be practical or quick, but at least it will put a lot of peoples minds at ease.
You can enter credit card numbers into Xbox Live. I wouldn't recommend it, but you can.
 

tangomonkey

New member
May 1, 2011
2
0
0
Hi all, new here but just though of something. I may be a wrong but won't the PS+ free upgrade be worthless if we can't obtain the downloads from the PS store??