Linked by Thom Holwerda on Tue 26th Apr 2011 22:06 UTC
Games After days and days of the Playstation Network being offline, Sony has announced it has taken the service down indefinitely. The cause is a lot more severe than previously thought: PSN has been systematically attacked, and personal information of all users has been stolen, possibly including credit card data. Sony is asking PSN users to keep close tabs on their credit card account statements. This has turned from a rather amusing slap on the wrist for Sony into a massive and truly epic security fail that could have tremendous consequences for millions and millions of people the world over.
Permalink for comment 471144
To read all comments associated with this story, please click here.
werpu
Member since:
2006-01-18

Excessive faith in DRM schemes bundled into game consoles to keep their own network safe, probably.

I assume they same, they were so trustful of their own console lockin, that they probably were sloppy on the server. I would not even be sure if a hacked PS3 was involved in the hack because every network sniffer could get the addresses and the encrypted data. So I would be careful to blame the PS3 hacks here.
Either way Sony omitted the golden rule of never trust the client here. On the other hand if the passwords and credit card data were really stored in clear text than they have a huge bigger problem also from a legal point of view.

Edited 2011-04-27 07:48 UTC

Reply Parent Score: 2