Sony Admits Private PSN Info Has Been Stolen - All Of It

[zarix2311]

PSN is down. You can't play games online. Oh well. One week later: Also your account information has been stolen and is now in the hands of someone you've probably never met and never. Oh we-huh? Oh, well....shit. Sigh, fuckin hackers

 

[Alphakirby]

Once again,I wish that asshole luck in using an empty prepaid card to fuck with my account

 

[Flauros]

I still think it's the retards at Anon
and to think a fortnight ago they were all "We're on your side, really"

I know Anon said it wasn't them but who buys that?

Yeees, because Anonymous is truly a great evil hacker empire of doom. They live in a red skull fortress and drink virgin blood daily to replenish the sufficient amount of bats, that compose their bodies.

Either that, or they didn't do it, because they're a bunch of bored basement dwellers and moralfags, and simply wouldn't have the capacity to do something this grand and epic. I mean, seriously, people still don't know what Anons are? Really? We're only god knows how long into this thing.

what the hell are you talking about?

 

[dagens24]

Somebody get a class action suit started. This is fucking ridiculous.

 

[jpoon]

Holy shit, this is just fucking great. Never again will I give you my credit card, you have dropped the glass ball, it is now broken.

 

[Pyrokinesis]

snip

And that's the third time, at least, that you've posted that YouTube clip. If you're trying to be an egotistical asshat, you're succeeding. And it's not making you look like a sane, wise human being. Please grow up.

Be snarky all you want the vid has a point and its true. Being snarky at me isnt going to change that. All they had to do was pull the plug, why not post it more? seems to be a sure fire answer to alot of the rederict that is poping up here.

Yet, I still despise the bastard hacker/s and understand completely how much Sony would be scrambling and toiling away at finding the cause/s. They're human beings. They can't just instantly KNOW what happens to anything. If your PC gets maliciously attacked, you're finding the cause and solution for a loooooooooooooooooooong-ass time. Sony has over SEVEN MILLION (or there abouts, maybe more?) accounts to manage. It's going to take time to find out the cause and solution. They want their facts straight BEFORE reporting anything drastic.

Guess they want their facts straight before pulling the plug too right? Compromise just isnt as colorful unless they have their facts straight. Or maybe they didnt know right? I mean who keeps an eye on all that important personal data... ha.. its only important data that could be used for malicious purposes on our customers, why keep an extra eye on it?

 

[oldtaku]

I am just boggled here at the number of people who seem to think that someone breaking into Sony's central servers *must* be related to being able to run homebrew on the PS3. It could be, but 'hackers' are not some big organized blob and the same people who want to pirate software are not usually the ones who'd want to steal credit card info. If you know the server IP addresses (and they do, very easy to get from tcpdump, etc) this is the sort of thing that would be easier to do from a PC.

If it's true that a compromised PS3 was used to suck everyone's data out of PSN's central servers through (say) unchecked id queries, then this is incredibly epic security failure on Sony's part. That they seem to have been storing passwords and not hashes is another one. I wonder what would have happened if you chose "Robert'); drop table" as your PSN id?


EDIT: fixed SQL to xkcd standards.

 

[CommanderKirov]

You know, when I was buying my first console I never actually considered the webbased operation networks.

Now when all the three consoles stand underneath my TV... I often think to myself "Should I connect them to internets?"


THANK GOD I CHOSE NO.

 

[LogicNProportion]

Good going, Sony.

Your system is about as stable and secure as... something instable and insecure.

The PS3's backwards compatibility?

The PSP's sales record?

Six-Axis controls?

I love Sony, but I could do this all day.

xD

 

[Torque669]

Wow ... This is just horrendous. They waited a week to tell anyone this, the flippin' idiots ... I dont know how PS3 "fanboys" can even attempt to rectify this. I heard arguments saying that it was "Free" and as such "Shouldnt complain its down" but just because its free doesnt mean people should lose credit card information.

I cant even come up with any idea how Sony are going to make this up to their customers.

You defeated your own argument, it's free thus not having to enter credit card information.

Also blaming someone for getting hacked is stupid.

People entered their credit card information to buy stuff from the Playstation Store. Christ...

I was more annoyed that they waited a week to tell anyone that their accounts could be compromised ... Should they have not told this earlier so people who HAD put their credit card information on to purchase products from the store could prepare and warn their bank about things such as this happening ...

 

[Pyrokinesis]

I am just boggled here at the number of people who seem to think that someone breaking into Sony's central servers *must* be related to being able to run homebrew on the PS3. It could be, but 'hackers' are not some big organized blob and the same people who want to pirate software are not usually the ones who'd want to steal credit card info. If you know the server IP addresses (and they do, very easy to get from tcpdump, etc) this is the sort of thing that would be easier to do from a PC.

If it's true that a compromised PS3 was used to suck everyone's data out of PSN's central servers through (say) unchecked id queries, then this is incredibly epic security failure on Sony's part. That they seem to have been storing passwords and not hashes is another one. I wonder what would have happened if you chose 'drop table; lol' as your PSN id?

Its because everyone assumes the data was stolen. Sony never once says the data was stolen only that there was the potential for it to be. Everyone just jumps of their rocker and stomps on the conclusion that its a malicious hacker after their credit card when no one said that anything was actually stolen.

 

[Ashcrexl]

it's a good thing i'm broke. i have literally less than $20 in my bank account. i might be a bit sad if it gets stolen, but OH WELL.

 

[Nopenahnuhuh]

Good going, Sony.

Your system is about as stable and secure as... something instable and insecure.

For some reason I read this in GLaDOS' voice.

 

[greenitedaze]

Theres all the detials to be told too!
Will PS+ a/c holders information (save games/data) be safe?
Are trophies gone for good?
Will Phony get an offical public fisting?
Has charitable donations for the tsunami gone astray?
Has phony got insurance cover?

 

[redisforever]

This is why I almost never use a credit card online. The possiblity of it happening to me may be little, but its still fucking there!

Yeah, if I need to buy something online, I will use a prepaid credit card. Bought with cash. Just in case. That way, if something is hacked, I won't lose all my money.

 

[greenitedaze]

details even

 

[Alphakirby]

Oh and we BETTER get some compensation out of this outage,seeing as our accounts were raped and all.

 

[Akiraacecombat]

So hackers steal information from millions of user,actually that is a lot of hate,specially when they can legally prosecute in the countries where Sony has branding and legal affiliations,those hackers will be found,after all they close PSN to check all the entry ip proxys,searching ip and entrances like hunting dogs,imagine the legal prosecution against them.

In any case,a lot of people will claim "they cannot be found without static ip's",the thing is that they probably already found the entry proxys,and the dynamic ip's so is a matter of time.

I believe that other online services or Microsoft could be behind the attack,anonymous aren't stupid hackers,and they aren't interested into personal information from users,they probably target high Sony employees,but to go into average users,well there is something else that is involved.

As far as I see it,Sony made some strategic moves(not "move",that is rubbish),but they create a whole company and subdivision for online services,that,will become a competitor to the stablish windows live services,so coincidence?

 

[Alphakirby]

Theres all the detials to be told too!
Will PS+ a/c holders information (save games/data) be safe?
Are trophies gone for good?
Will Phony get an offical public fisting?
Has charitable donations for the tsunami gone astray?
Has phony got insurance cover?

I can answer the trophies question,I linked my PSN account with my The Escapist profile,the trophies are still there. So no,I don't think we lost trophies.

 

[Casual Shinji]

I am just boggled here at the number of people who seem to think that someone breaking into Sony's central servers *must* be related to being able to run homebrew on the PS3. It could be, but 'hackers' are not some big organized blob and the same people who want to pirate software are not usually the ones who'd want to steal credit card info. If you know the server IP addresses (and they do, very easy to get from tcpdump, etc) this is the sort of thing that would be easier to do from a PC.

If it's true that a compromised PS3 was used to suck everyone's data out of PSN's central servers through (say) unchecked id queries, then this is incredibly epic security failure on Sony's part. That they seem to have been storing passwords and not hashes is another one. I wonder what would have happened if you chose 'drop table; lol' as your PSN id?

Its because everyone assumes the data was stolen. Sony never once says the data was stolen on that there was the potential for it to be. Everyone just jumps of their rocker and stomps on the conclusion that its a malicious hacker after their credit card when no one said that anything was actually stolen.

Well, when you figure this news item is titled "Sony Admits Private PSN Info Has Been Stolen - ALL OF IT" it's no surprise people are worried that their private PSN info has been stolen - ALL OF IT.