Oh my Gee Wiz, Sony!

[Ergo-Proxy]

Because it's important? I mean, possibilities were increased by X%. Their lax security created a scenario that is not comfortable, nor should be "ignored." I'm not going to be crazy and refuse to do business with them in the future. I mean, shit happens. However, to pretend it wasn't a big deal...well, that I find absolutely crazy. I consider it of real concern, not just for myself, but for others.

Assuming a person doesn't know what to do with the information is a mistake. I would never assume that.

There are 77 million accounts estimated, of which a portion has inactive accounts, accounts with fake information, accounts with real emails but with passwords that dont work with the emails etc. You are just one out of 77 million accounts and your info may already be useless.

Not that I'm taking sides in this debate, but didn't sony confirm that personal information was compromised and taken? I thought that much was known by now, though I could be wrong.

Yes they said it. But it wasnt clarified if the information of all the users was being stolen or if Sony said it because they saw that they had the ability to access information.

[BBM128]

It should be noted that the information was "compromised". We do not know if it's been used. So far, no evidence has surfaced that it has and it's been three weeks since the information was compromised. That doesn't mean it can't happen, though. I'm just saying that there was a limited window in which the hackers responsible for this entire mess could have taken the info and so far, no claims of credit card fraud, no claims of identity theft, no claims of anything.... Yet. (That qualifier is important because the possibility is still open, of course)

However, and this may be a tough pill to swallow for some, given how much sensationalist, yellow journalistic misinformation was put out there that was so readily believed by portions of the internet at large, the only thing we can do is wait for more details to emerge that are concrete and credible. I honestly expect we'll know more with time.

[CorruptedDragon]

You know, it's kind of messed up that I never got my email from Sony. I used a fake name and street address but had one of my real email addresses in it. Damn you sdf!

[coldfoot]

You know, it's kind of messed up that I never got my email from Sony. I used a fake name and street address but had one of my real email addresses in it. Damn you sdf!

Don't worry, identities of janitors aren't really worth stealing. That's why PSN was hacked instead of XBL

[TheAnalogKid]

You've got to be fucking kidding me.

http://kotaku.com/5803050/sony-plays...ly-compromised

Report: Sony PlayStation Network Password Reset Page Exploited, Customer Accounts Potentially CompromisedAccording to reports on Nyleveia.com, Eurogamer, and NeoGAF, Sony's PlayStation Network password reset system-the one just put in place after the PSN hack-has been compromised, allowing hackers to change a PSN password if they know your email and date of birth. Exactly the sort of information that was released in the original hack.

Sony has taken the password reset system offline. Kotaku has reached out to Sony for comment.

[arrowspark]

I like how Sony makes it sound like giving customers almost nothing is really giving them alot. It's kind of like how they made it seem like giving a whole mp3 album was a big deal and costing them alot during that rootkit fiasco a few years ago. An intern making minimum wage could have created that mp3 album. Now they make it sound like giving people a couple of inexpensive digital downloads is another big deal.

[Wulf]

Changing your credit card info again? This really sucks for those involved and my heart goes out to you because you shouldn't have to deal with this.

[CorruptedDragon]

You've got to be fucking kidding me.

http://kotaku.com/5803050/sony-plays...ly-compromised

This has to be a joke....I certainly hope so on Sony's behalf. While I like seeing them taking a beating, if it happens again, it's just brutal.

[TheAnalogKid]

Changing your credit card info again? This really sucks for those involved and my heart goes out to you because you shouldn't have to deal with this.

Has nothing to do with credit cards. WTF are you talking about?

[TheAnalogKid]

I like how Sony makes it sound like giving customers almost nothing is really giving them alot. It's kind of like how they made it seem like giving a whole mp3 album was a big deal and costing them alot during that rootkit fiasco a few years ago. An intern making minimum wage could have created that mp3 album. Now they make it sound like giving people a couple of inexpensive digital downloads is another big deal.

Depending on what one picks as their choices of games, you can end up with over a hundred bucks of shit. Thats not realy next to nothing.

What would you have liked? A 5 dollar or 10 dollar psn card so you could buy an inexpensive digital download that they aren't offering for free?

[BBM128]

You've got to be fucking kidding me.

http://kotaku.com/5803050/sony-plays...ly-compromised

Sony apparently reset the passwords for those who were compromised so I imagine another password swap is in it for them when they try to login again. So it seems like they got on the ball, there, but damn.... Something's gotta give.

[Wulf]

Correct me if I'm wrong but, once you have access to the password and PSN account do you not have access to the new credit card?

[Snadinator]

I feel really really bad for Sony.

No system is fool proof and I can tell you as a fact that the entire IT Security industry is looking at what happened with Sony very carefully. Government agencies, private business, even competitors.

The amount of malware out there is increasing exponentially every year. 34% of all malware ever created, was created in 2010! The outlook for 2011 is looking even grimmer.

Now we are seeing the rise of Advanced Persistant Threats (APTs). These insidious threats are custom made, and do not get picked up by malware scanning applications. They infiltrate a network without detection and spend months gathering intel on how the infrastructure is setup. When they have sufficient information, then they launch the attack.

Google was attacked through an APT from China. One of the first encounters with an APT. Google found out during the investigation that they had been breached at least 3 months prior to the attack.

This isn't a failure on Sony's part. Cyber criminals are extremely intelligent, well organized and often better funded. They operate 24/7, they are not subject to laws, policies, guidelines or ethics.

[CorruptedDragon]

I feel really really bad for Sony.

No system is fool proof and I can tell you as a fact that the entire IT Security industry is looking at what happened with Sony very carefully. Government agencies, private business, even competitors.

The amount of malware out there is increasing exponentially every year. 34% of all malware ever created, was created in 2010! The outlook for 2011 is looking even grimmer.

Now we are seeing the rise of Advanced Persistant Threats (APTs). These insidious threats are custom made, and do not get picked up by malware scanning applications. They infiltrate a network without detection and spend months gathering intel on how the infrastructure is setup. When they have sufficient information, then they launch the attack.

Google was attacked through an APT from China. One of the first encounters with an APT. Google found out during the investigation that they had been breached at least 3 months prior to the attack.

This isn't a failure on Sony's part. Cyber criminals are extremely intelligent, well organized and often better funded. They operate 24/7, they are not subject to laws, policies, guidelines or ethics.

Maybe, but public perception will be that it is. The public doesn't usually care if its right or not.

[TheAnalogKid]

Correct me if I'm wrong but, once you have access to the password and PSN account do you not have access to the new credit card?

No, you do not. when you enter your credit-card information, it blanks out all numbers except the last 4. You can't do anything with the last 4, unless you know the rest of it.