You have to be surprised at how such a big corporation can fail so badly at keeping their security up to date. It seems that the PSN online login page with password reset was exploited again by hackers. Though not a big as issue as the first, if you go to reset your PSN password all it asks for is your E-mail and date of birth. Hmm lets see, database stolen…they probably have this information….you see where its going.
As a result all webpage logins/password reset options are now offline. If you legitimately don’t remember your PSN logins, well seems like your out of luck for a while. Looks like everyone should have followed Japans decision eh?
Whats interesting about the whole situation that a website Nyleveia discovered this exploit and posted about it online (via Twitter), and contacted Sony to take a look at it. Sony took the tip, had the tweets removed and now have the reason for downtime as:
“Clarification: this maintenance doesn’t affect PSN on consoles, only the website you click through to from the password change email.”
“Fortunately we have got ISPs to release outstanding emails; unfortunately, a small amount of maintenance is required to improve this process”
This exploit was confirmed by a user over at Neogaf, you can see the details about it HERE.
05-18-2011
09:42 AM
Jesus...By far the most incompetent company I've ever seen!
05-18-2011
09:47 AM
Sony anyone with a 2 year degree in networking would handle this situation better than your so called "engineers" could. Sony you are killing the possibility of anyone buying a PS4
05-18-2011
09:53 AM
but people can still use the psn network services?online and stuff?
05-18-2011
09:57 AM
ill buy a ps4 if i can hack it.
05-18-2011
10:14 AM
yet again?
Ok i'm tired of reading. I rather wait for the movie. Because this is getting so epic it does deserve a movie indeed
05-18-2011
10:15 AM
OMG! I am laughing so hard right now!
First the breach
Then unappreaciated appreciation program
And now this!
Honestly you cant make this stuff up! :D
Drat this doesnt affect those who already have changed their passwords and can still log in on their console
05-18-2011
10:22 AM
If you know the e-mail address and date of birth you can reset the password to a lot of things...
05-18-2011
10:33 AM
I tried resetting my password yesterday (as it has been so long since I used PSN I honestly couldn't remember it), & they said to be patient receiving the email... it came early this morning, when I was still in bed!
05-18-2011
10:39 AM
05-18-2011
10:55 AM
Wow.
What a fiasco!
05-18-2011
10:55 AM
Now they just need better things then just 2old ps3 games...
If they can...
Let psn store be free sure now no one would spent their creditcard lols.
05-18-2011
11:07 AM
Ok, so what happens is after you try to reset your password you get an email confirmation link. Somehow they bypass using the confirmation link to reset your password.
05-18-2011
11:11 AM
Mother ****ers, the next thing will be what ?! Explosion of our ps3 or what. Now I'm glad, no mercy with download !
05-18-2011
11:51 AM
Thank goodness, most of us cfw users don't care for online as much as the next.
05-18-2011
11:59 AM
I could do a better job than Sony, and I am absolutely useless lol
05-18-2011
12:40 PM
Just one word. Why. This is pure torture .
05-18-2011
12:49 PM
See!! Thats why im not on psn and wont be for the foreseeable future. im on 3.60 and will be untill a new cfw or mfw come out for my firmware i knew something was up when the japs declined the online service as if they knew something was wrong with it. I truly hope u ingenious guys around here could figure out a solution for those of us who was forced upon 3.60 due to sending in their console for repair cause otherwise were stuck here 4ever! lol
05-18-2011
12:58 PM
05-18-2011
01:13 PM
PS Blog Update - Sony Denies Hack
05-18-2011
01:17 PM
If there will be a 3.60cfw there will be also a 3.61cfw.
Be serious..
05-18-2011
01:20 PM
HAHAHAHAHAH
i knew this was gonna happened. thats why i stayed off. i couldnt trust them to get right the first time. hell i wouldnt trust em fixing it the last. SONY needs to be sent into the corner for fvken up. i wish congress would step up and do something about this. this is ironic.
05-18-2011
01:23 PM
Well it wasnt a hack, it was a huge **** up! They thought the process was secure, but forgot the hackers had all the details to fill in the form. For those email accounts they did not have passwords, they found a loophole in the process so didnt have to have access any way.
So they cannot blame anyone here apart from themselves!
05-18-2011
01:29 PM
They just change the url from this:
https://store.playstation.com/accoun...assword.action
to this:
https://store.playstation.com/accoun...assword.action
05-18-2011
02:12 PM
05-18-2011
02:22 PM
Oh for lords sake...
05-18-2011
02:32 PM
Well I hear lots of people turned in their ps3 for xboxes or just sold them. I also hear that sony may reduce the price of the ps3 the summer.
As with having hacked consoles, the general rule these days is have 2 consoles, use one to hack and the other to stay official, this way you will have the best of both world.
As as stated above, the price of 2nd hand ps3s will fall, so a lot more people will be able to afford a second console, they just have to hope that they are 3.55 or that someone releases a cfw3.61
05-18-2011
04:00 PM
or do like i did and have bro give u his broke one and spend 80 bucks for a blue ray and fix it.. now i have best of both worlds
05-18-2011
04:34 PM
Just close down the PSN permanently. Since PSN got hacked my linked email account that never once got spam has been spammed constantly since.
05-18-2011
05:48 PM
you guys are ****ing idiots if you new squat then you would have figured out that all they are doing is stepping up the security it takes to reset your account and if i guess right you probably don't need to use a activated ps3 anymore.
05-18-2011
06:47 PM
05-18-2011
07:05 PM
05-18-2011
08:04 PM
"Contrary to some reports, there was no hack involved. In the process of resetting of passwords there was a URL exploit that we have subsequently fixed."
To gain access to (a computer file or network) illegally or without authorization.
@Sony, quit talking yourselves up! Admit when you are wrong!
You are definitely losing future customers... At least, I know you lost this one!!
05-18-2011
08:43 PM
I think Sony means a new
UNSECURITY UPDATE
I laughed so hard what a big fail haha
such a big fail for sony...
05-19-2011
06:54 AM
Can hackers please make their own psn, i'm sure it will be safer than the real one
05-19-2011
08:33 AM
05-19-2011
10:30 AM
Lucky me I was awake that night, but as mars staed before, he was sleeping.
---------------------------------------
Now for the movie, on this Winter holidays, maybe I will start making a movie, with interviews and stuff like that. This is going from amaze to anger to pitty to laugh.
05-19-2011
02:31 PM
VideoX, you can request that they not update the fw. This works if you take it in. Not sure about shipping it.
05-19-2011
05:08 PM
I sold my Muteki, i sold my ps3, bye bye sony for ever... Force to graf against the mafia.
05-19-2011
05:09 PM
05-19-2011
07:42 PM
05-20-2011
10:30 AM
05-20-2011
04:43 PM
05-20-2011
07:56 PM
05-21-2011
01:10 PM
yeah from the looks of it sony is heading down hill.
YouTube - ‪Sony Playstation Network Gets Hacked.....Again‬‏
05-21-2011
04:33 PM
Sony FAILED once again! This does not even surprise me
05-21-2011
04:42 PM
Well would you expect anything less from the makers of PSN (Pants Security Network) ? I done my old "master of disguise" earlier today and broke into So-Net's technical support earlier. Took this picture of Sonys Chief Security officer as he taught his new staff on the ways of protecting a network.
