It’s my Visa debit card that’s likely to be compromised. I got a call from my bank last time this happened - it was last October, and they cancelled it and sent me a new one. I was cardless for over a week, which was an inconvenience, but less of one than seeing money drain from my account. I’ll have to keep a beady eye out on the bank statements for anything “odd” going on in that area.

Now PlayStation Blog comments go down

http://www.computerandvideogames.com/29 ... s-go-down/

So who did it? Seemed a bit of a coincidence that it happened as they launch their tablet...

MS had some sort of big Live event too

Geohot on PSN hack: 'Stealing databases of user info is not cool'

George 'Geohot' Hotz says those who stole PlayStation Network users' personal information "make the hacking community look bad".

The PS3 hacker - who settled a long-running legal dispute with Sony earlier this month - took to his blog to distance himself from the recent PSN security exploits - and to have a few digs at the platform holder.

".. As a onetime victim of identity theft, I feel for everyone who's data has been stolen," he wrote. "And to anyone who thinks I was involved in any way with this, I'm not crazy, and would prefer to not have the FBI knocking on my door.

"Running homebrew and exploring security on your devices is cool, hacking into someone else's server and stealing databases of user info is not cool. You make the hacking community look bad, even if it is aimed at douches like Sony."

He added: "Also, let's not fault the Sony engineers for this, the same way I do not fault the engineers who designed the BMG rootkit. The fault lies with the executives who declared a war on hackers, laughed at the idea of people penetrating the fortress that once was Sony, whined incessantly about piracy, and kept hiring more lawyers when they really needed to hire good security experts. Alienating the hacker community is not a good idea.

"Sony needs to accept that they no longer own and control the PS3 when they sell it to you. Notice it's only PSN that gave away all your personal data, not Xbox Live when the 360 was hacked, not iTunes when the iPhone was jailbroken, and not GMail when Android was rooted.

"To the perpetrator, two things. You are clearly talented and will have plenty of money(or a jail sentence and bankruptcy) coming to you in the future. Don't be a dick and sell people's information."

http://www.computerandvideogames.com/29 ... -not-cool/

No doubt CVG's legion of whiny bitch posters will be along soon to blame him personally for the Sony hack...

The second comment starts the ball rolling.

It's a great site in the main, but my God some of the members need a good slap

Maybe with the insecurity of such systems maybe we should demand simple credit cards which have a maximum limit of £50 so if compromised the limit of losses for banks and/or customers will be capped?

Sony Apologise

Hackers offering to sell PSN credit card details

Apparently offer to sell them BACK to Sony

In the ongoing Sony PR nightmare that is the PlayStation Network hack, the latest rumours suggest that hackers are trying to sell the credit card details of 2.2 million PSN users.

Not only that, the hackers are also alleged to have offered to sell back the data to Sony, with the group claiming that Sony refused to buy back the list.

Sony offered PSN data?

The New York Times reports that Sony was offered the chance to buy back the information for around $100k but that the company has ignored the requests.

Sony has refuted the paper's claims.

"To my knowledge there is no truth to the report that Sony was offered an opportunity to purchase the list," said SCEA PR boss Patrick Seybold.

"The entire credit card table was encrypted and we have no evidence that credit card data was taken."

Kevin Stevens, senior threat researcher at the security firm Trend Micro, told the New York Times that he had seen talk of the database on numerous hacker forums online.

"Sony is saying the credit cards were encrypted, but we are hearing that the hackers made it into the main database, which would have given them access to everything, including credit card numbers," added security consultant Mathew Solnik, from iSEC Partners

Via The New York Times

http://www.techradar.com/news/gaming/ha ... ils-949660

My first thought would be that if the card numbers were gonna be used/sold, it would have happened by now

Why?

There needs to be an auction for that quantity of data, and it takes time. Unverified credit card details go for around 10p a shot, so we're looking at bids around the £250K mark. Not that many people have so much cash.

Once it's been sold, then it'll start being distributed and used. Some card details might not be used for months, or even years depending on the exp date.

Also, there are so many lies being told that we still can't know the truth.

Well I moved out my savings into the other account. I still have direct debits etc coming out as it's getting to the beginning of the month so had to leave a little in there.

The hack was between April 17 and April 19 according to Sony, and the longer the hackers wait (or length of time before use) the less the info will be worth, I'd guess. Also, you'd think there'd be more reports of cards being 'tested' by the hackers or their buyers, since thousands of people have probably checked their credit card statement since it hit the media.

PlayStation Network back online 'this week'

Sony Computer Entertainment has confirmed it will begin a "phased restoration by region" of the PlayStation Network this week, starting with gaming, music and video services.

Following an "extensive audit" that's seen PSN offline for more than a week, Sony says it's implemented a variety of new security measures and is working with law enforcement to track down and prosecute those responsible for the recent network intrusion.

The platform holder will also be handing out various gifts and service bonuses to PS3 owners to thank them for their patience, it says.

When PSN returns this week the PS3 will have a forced system software update that will require all registered PlayStation Network users to change their account passwords before being able to sign into the service, Sony says. As an added layer of security, that password can only be changed on the same PS3 in which that account was activated, or through validated email confirmation.

The initial phase of the rollout will include, but is not limited to, the following:

* Restoration of Online game-play across the PlayStation3 (PS3) and PSP (PlayStationPortable) systems
* This includes titles requiring online verification and downloaded games
* Access to Music Unlimited powered by Qriocity for PS3/PSP for existing subscribers
* Access to account management and password reset
* Access to download un-expired Movie Rentals on PS3, PSP and MediaGo
* PlayStationHome
* Friends List
* Chat Functionality


Sony will continue to verify security for transactions before resuming the PlayStation Store and other Qriocity services this month, it says.

Sony's new chief information security officer will be responsible for customer data protection and supplement existing information security personnel, the firms says. The new security measures implemented include, but are not limited to (in Sony's words):

* Added automated software monitoring and configuration management to help defend against new attacks
* Enhanced levels of data protection and encryption
* Enhanced ability to detect software intrusions within the network, unauthorized access and unusual activity patterns
* Implementation of additional firewalls


Finally (and here's the good bit) Sony's set to roll out free "PlayStation entertainment content" and give PSN customers free PS Plus membership for 30 days. Here are the goods:

* Each territory will be offering selected PlayStation entertainment content for free download. Specific details of this content will be announced in each region soon.
* All existing PlayStation Network customers will be provided with 30 days free membership in the PlayStation Plus premium service. Current members of PlayStation Plus will receive 30 days free service.
* Music Unlimited powered by Qriocity subscribers (in countries where the service is available) will receive 30 days free service.


"This criminal act against our network had a significant impact not only on our consumers, but our entire industry," said Sony exec deputy president, Kazuo Hirai. "These illegal attacks obviously highlight the widespread problem with cyber-security. We take the security of our consumers' information very seriously and are committed to helping our consumers protect their personal data. In addition, the organization has worked around the clock to bring these services back online, and are doing so only after we had verified increased levels of security across our networks."

"Our global audience of PlayStation Network and Qriocity consumers was disrupted. We have learned lessons along the way about the valued relationship with our consumers, and to that end, we will be launching a customer appreciation program for registered consumers as a way of expressing our gratitude for their loyalty during this network downtime, as we work even harder to restore and regain their trust in us and our services."

http://www.computerandvideogames.com/29 ... this-week/

The PS Plus move/Qriocity (what a fcuking dumb name, and spelling) is a good one by Sony - introduce all those people that didn't know/care it existed in the hope they'll trust Sony enough to pay for it later...

The free downloadable content had better not just be a copy of Wipeout or something, cos they'll be seriously underestimating the anger of their users

I wonder what 'a customer appreciation program' actually entails...

Honestly, with the impending exams, this has been a blessing in disguise. I haven't touched my PS3 in over a week.


I know what I want, and I know they'll give, and they won't be the same.


Dammit I knew it'd be something like this. Entirely designed to bring in more users.

What I really wanted: a £10 voucher to soften the blow of the new maps for Black Ops. I hope my gaming profile is intact. Will be mega-pissed off if I find I have to start from the bottom. The biggest advantage for me when black-ops came out is that I'm a run'n'gun kinda person, so did really well, Prestiging before most others.