Home | Blog | Software | Reviews and Features | Forum | Help | Donate | About us
topbanner_forum
  *

avatar image

Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
  • December 11, 2016, 07:56:20 AM
  • Proudly celebrating 10 years online.
  • Donate now to become a lifetime supporting member of the site and get a non-expiring license key for all of our programs.
  • donate

Last post Author Topic: Sony Playstation Network hacked - All your infos are belong to hackers.  (Read 10431 times)

Stoic Joker

  • Honorary Member
  • Joined in 2008
  • **
  • Posts: 6,296
    • View Profile
    • www.StoicJoker.com
    • Donate to Member
Now this one's really funny:

Quote
According to reports on Nyleveia.com, Eurogamer, and NeoGAF, Sony's PlayStation Network password reset system-the one just put in place after the PSN hack-has been compromised, allowing hackers to change a PSN password if they know your email and date of birth. Exactly the sort of information that was released in the original hack.

http://kotaku.com/58...entially-compromised

Apparently Sony hasn't heard of the put the reset link in the Email trick...  :wallbash: ...Wow!

Deozaan

  • Charter Member
  • Joined in 2006
  • ***
  • Points: 1
  • Posts: 7,725
    • View Profile
    • The Blog of Deozaan
    • Read more about this member.
    • Donate to Member
It's astounding how incompetent Sony have revealed themselves to be with this whole ordeal...


Josh

  • Charter Honorary Member
  • Joined in 2005
  • ***
  • Points: -5
  • Posts: 3,398
    • View Profile
    • Donate to Member
How are they incompetent with this issue now? Almost all companies use the same email address verification, or a very similar method, for login information....

jgpaiva

  • Global Moderator
  • Joined in 2006
  • *****
  • Posts: 4,727
    • View Profile
    • Donate to Member
And here's what sony did to repay its users for these problems: Sony details welcome back package for PSN users

wraith808

  • Supporting Member
  • Joined in 2006
  • **
  • Posts: 8,408
  • "In my dreams, I always do it right."
    • View Profile
    • Donate to Member
How are they incompetent with this issue now? Almost all companies use the same email address verification, or a very similar method, for login information....
Normally, the reset link is in the e-mail though, so the hacker would have to know the e-mail address.  For my SOE account, that's the way it was, so this is pretty incomprehensible.

Deozaan

  • Charter Member
  • Joined in 2006
  • ***
  • Points: 1
  • Posts: 7,725
    • View Profile
    • The Blog of Deozaan
    • Read more about this member.
    • Donate to Member
How are they incompetent with this issue now? Almost all companies use the same email address verification, or a very similar method, for login information....

Normally, the reset link is in the e-mail, or you are sent a verification code in the e-mail that you have to type in to change your password. That way only the person who has access to the e-mail account can reset the password.

What Sony did in this case was require you to just type in your e-mail address and birth date to reset your password. Nothing is sent to you to verify you have access to the e-mail account. And guess what? Whoever stole all the PSN data also has everybody's e-mail addresses and birth dates.