Sony answers questions about PlayStation Network data theft
Sony answered some of the most asked questions about the subscriber data stolen from its PlayStation Network and Qriocity services.
A fresh post from Sony senior director corporate communication and social media Patrick Seybold answers some of the most asked questions in the wake of Sony's disclosure that subscriber data has been stolen from the PlayStaion Network and Qriocity services. The highlights include:
- Confirmation that all credit card numbers were stored in an encrypted format and that there is no evidence that data was taken.
- Admission that personal data maintained in a separate data table was not encrypted.
- Recommendation that if you use the same username and password elsewhere that those passwords be changed.
- For those trying to figure out which card was on their account, the first four and last four digits of the card number would be on a confirmation email from DoNotReply@ac.playstation.net if you used it to fund your online wallet.
- A new system software update will rollout with the restoration of the PlayStation Network requiring all users to change their password.
- Sony is working with law enforcement personnel and proceeding aggressively to find those responsible, wherever they may be around the world.
No additional update on when the service might be back online was given beyond reiterating that Sony expects to have some services up within a week from yesterday. That timetable also comes with the disclaimer that they will only start to turn it back on when they are "confident that the network is secure."
-
Garnett Lee posted a new article, Sony answers questions about PlayStation Network data theft.
Sony answered some of the most asked questions about the subscriber data stolen from its PlayStation Network and Qriocity services.-
-
-
-
-
-
-
And that's completely inexcusable. It is literally "ASP/PHP/Ruby for Dummies" level stuff that has been disregarded for a 50m+ user commerce-based system.
I'm starting to wonder if Sony placed all their eggs in one basket with the PS3, that they focused all their efforts on securing the consumer hardware and cut corners elsewhere as that hardware acted as their ultimate 'firewall'. It would explain why they went after PS3 exploiters so aggressively - it was their entire security model at stake.
-
-
-
-
-
-
-
Oh so let me guess my friends that was raped for trusting a friend so she deserved have had that happen to her.
I deserved to be held up at knife point because I went to work on freaking morning and was doing my job
Another friend of mine deserved to be held up at gun point just for WALKING HOME!!...
Like Really... REALLY?
When you people and this sites get a clue... This was and is a crime. yes 70 million people are now victims Of the largest Information Heist in history. -
-
-
-
-
http://bits.blogs.nytimes.com/2011/04/28/hackers-claim-to-have-playstation-users-card-data/?ref=technology
Just read this on the NYtimes website
go figure they used a hacked PS3 who would have thought -
-
but seriously, i'm laughing @ all the outrage w/ PSN; it's some black-hat who is stealing/selling personal info. as for PCI DSS, it's a standard, not a law, and it's not so specific that it can prevent every attack from happening, just a guideline which outlines fundamentals of a secure business information system.
-
-