Sign up for a new account or log in here:
also @ TechSpot: Gamers spend more money on iOS than dedicated handhelds
Update: Sony has fixed the flaw. "We temporarily took down the PSN and Qriocity password reset page," a Sony spokesperson said in a statement. "Contrary to some reports, there was no hack involved. In the process of resetting of passwords there was a URL exploit that we have subsequently fixed. Consumers who haven’t reset their passwords for PSN are still encouraged to do so directly on their PS3. Otherwise, they can continue to do so via the website as soon as we bring that site back up."
Sony's PlayStation Network (PSN) password reset system has suffered from an exploit that allows attackers to change your password using only your PSN account email and your date of birth. This information was compromised in the original PSN hack on April 20, 2011, so whoever has the data from Sony could in theory reset any of the captured users accounts simply by entering the details they stole.
Nyleveia was first contacted about the security breach by an unknown individual. The site at first believed it was a poor hoax designed only to stir the community into another frenzy, but decided to create a test account to verify the claims. After giving the individual the account email and the date of birth used for the account, a minute later the contact had successfully managed to change the password. It's important to emphasize that the person did not know the old password. Once the security hole was confirmed, Sony was given a detailed description of how it works.
After being notified of the flaw, Sony took down the PSN sign-in page for a number of its websites just 15 minutes after responding to the warning. This means the website users are directed to by password reset emails is now down (as shown below). This "maintenance" doesn't affect PSN on consoles, only the website users are trying to access to change their password and thus get back onto PSN.
"Unfortunately this also means that those who are still trying to change their password via Playstation.com or Qriocity.com will be unable to do so for the time being," a Sony spokesperson said in a statement. "This is due to essential maintenance and at present it is unclear how long this will take. In the meantime you will still be able to sign into PSN via your PlayStation 3 and PSP devices to connect to game services and view Trophy/Friends information."
The exploit in question works despite Sony forcing you to change their password when you first reconnect to PSN. An attacker can change your password using only your account's email and date of birth, so you should create a new email address that you will not use anywhere else, and switch your PSN account to use this new email.
Unfortunately, you won't be able to do this until Sony puts the webpage in question back up. Let's hope that Sony manages to fix the exploit in a timely manner. Further details on the security flaw will not be released until Sony patches it.
User Comments: 31
Got something to say? Post a comment-
@ Guest 2:16PM
I'll say it for you, Sony sucks.
-
Trololo HO HO HO!
-
Owning a PS3 and having potentially been a target of these hackers, I still think Sony deserved this for their arrogance. They needed to be humbled.
-
I won't forget the DRM Rootkit Sony inflicted upon the world, including Mac & PCs...
http://www.bing.com/search?q=sony+rootkit&FORM=IE9SRC
It's sad to see a brilliant company known for its hardware excellence designs, go down in flames just because of totally inept management.
Well somebody is responsible for heading the Sony Corporation?
Sony was great when it was ran by Japanese people. Now it's asinine British and German management, who royally screwed up everything, in the pursuit of greed and immediate profits.
I only purchased a PS3 as a bluray disc player. Well I enjoy GranTurismo 5 and driving the Lexus LF-A at over 300Mph...
But for serious gaming, I use an i7 12GB DDR3 overclocked with (2) GTX580 FTW Hydro-Copper2 @850MHz GPU core liquid cooled. Just the 2 video cards consume 84Amps @ 12V.
Consoles are just what they are. A mere $200 toy. With a low-power supply and corresponding low computing power.
I also have a xbox first gen modded to Linux, as well as PS1 PS2 and PS3.
Serves them (Sony) right.
-- WinTard
~~~~~~~~~~
We should never be allowed to forget that it is the customer who, in the end, determines how many people are employed and what sort of wages companies can afford.
~ Lord Robens
There is only one boss. The customer. And he can fire everybody in the company from the chairman down, simply by spending his money somewhere else.
~ Sam Walton
-
It's like watching a daddy long-legs trying to dance the tango?
-
Well I have never seen so many foolish comments on this web page.
It must be kiddie / hate the console hour ?!?
Sony is a business that is . . . wait for it . . . important to the economy.
Chances are that Sony will outlive the USA in any case. No more dumb fat kids commenting on things they know nothing about - what a relief that will be !
Most Popular
| Trending | Featured |
-
Microsoft launches YouTube app, Google demands it taken down
-
Bill Gates is once again the richest person in the world
-
Nvidia Shield arrives in June for $349, pre-orders open now (update)
-
Asus' new lineup of Z87 Haswell motherboards revealed
-
Google, NASA join forces to build quantum computing laboratory
Featured on Mice
Subscribe to TechSpot
Get free exclusive content, learn about new features and breaking tech news.