Report: PSN Taken Down Because of Credit Card Scam

April 25, 2011 -

A speculative VentureBeat report suggests that Sony took down the PlayStation Network completely to avoid a new program that let hackers use a credit card number to download software - even if the credit card number was fake. The report points to a post on Reddit from a user named chesh420 - who is also a moderator at PS3 hacking site PSX-Scene.

 

The lengthy Reddit post contends that Sony took down the PlayStation Network because of a new custom firmware called Rebug, which basically turns a consumer PS3 into a limited developer PS3. This in turn gives the user access to the private developer section of the PlayStation Network. More from the posts on Reddit:

Ok, I've seen a bunch of speculation of why people think PSN is down, and I thought I should just post what the community knows in comparison to what Sony is telling everyone. The truth is, there was a new CFW (custom firmware) released known as Rebug (http://rebug.me). It essentially turns a retail console into a dev console (not fully, but gives you a lot of the same options that usually dev's only have access to). Anyway, this new CFW was quickly figured out to give CFW users access to the PSN network again via the dev networks. With a little manipulation of the URL's through a proxy server you could get your hacked console back online. Not that big of a deal, right? Well, it also turns out that some people over at NGU found out that you could provide fake CC# info and the authenticity of the information was never checked as you were on Sony's private developer PSN network (essentially a network that Sony trusted). What happened next was extreme piracy of PSN content. Sony realizing the issue here shut down the network. Now, before you go freaking out about the latest information posted about Kotaku, no ones personal information was accessible via this hack. Not to say they couldn't get it, but no one is admitting to it being available. Anyway, that's the real reason for the PSN downtime. Sony is now rebuilding all of it's PSN servers to be more secure and (hopefully) make sure the CFW users cannot get online anymore.

Edit #1: To those of you saying that this is speculation, you are correct. But, it is speculation based on a lot of facts and the outcome seems to make the most sense.

1. Rebug was released on 3/31/11.

2. First guides of how to use the dev network to get back on COD games on 4/3/11. 3. Word of "shady" sites finding a way to pirate PSN content via the dev networks on 4/7/11 (basing this on posts I had to delete on the website). 4. PSN goes down on 4/20/11 Now, you can believe Sony's PR team which has kept you completely in the dark, or you can see the list of events above and come to your own conclusion. Now, this isn't the first time Sony has fought back against the PS3 modders from getting on PSN. A couple of months ago we had a utility called f*ckPSN that changed the necessary header information that was being sent to Sony to allow modified consoles back online. We were able to use it for about a month. Then came the new TOS, the mass e-mail to PS3 customers, and software update 3.56 and 3.60. So, once again, yes this is all speculation, but it is speculation based on previous actions and known facts.

Edit #2: Mathieulh just mentioned that he has been in contact with someone that has official access to the SCE devnet servers and it was posted to them today that only 3.60+ debug firmwares will be allowed on the dev network anymore. All earlier versions will be cut. If you want to retain your access you need to contact Sony and upgrade to 3.60 debug firmware."

Source: Reddit by way of VentureBeat


Comments

Re: Report: PSN Taken Down Because of Credit Card Scam

Seems like a pretty severe overreaction if true.  Not to say Sony wouldn't overreact to the mere POTENTIAL for abuse (coughOtherOScough), but if you're worried about scammers using fake credit cards, you work on fixing authentication on your backend, you don't take the entire network down.

As you say, this is just speculation -- and I find it a bit hard to swallow TBH.

Re: Report: PSN Taken Down Because of Credit Card Scam

Sounds like sony put all thier eggs on the PS3 being unhackable and thus did a poor job on genreal secuirty....


I have a dream, break the chains of copy right oppression! http://zippydsmlee.wordpress.com/2010/05/21/cigital-disobedience/


Copyright infringement is nothing more than civil disobedience to a bad set of laws. Let's renegotiate them.

---

Patreon

Deviantart

 
Forgot your password?
Username :
Password :

Shout box

You're not permitted to post shouts.
Sora-Chan@EZK: It's kind sad that kind of thing still occurs to this day (and for good reasons...)08/04/2015 - 2:33pm
E. Zachary KnightA woman author shares her experience submitting her manuscript to publishing agents under a man's name. http://jezebel.com/homme-de-plume-what-i-learned-sending-my-novel-out-und-172063762708/04/2015 - 1:21pm
james_fudgeme either. They are rolling it out in phases.08/04/2015 - 12:41pm
Big PermI haven't got my notification yet, even though I reserved it the day the pop up came.08/04/2015 - 12:27pm
james_fudgeThanks Matthew. I have not yet installed Windows 10, but the complaints about it have been minimal.08/04/2015 - 12:19pm
benohawkhttp://goo.gl/6yZ7EO suggests you can kill it all, but I haven't tested it on my system as of yet. And I wouldn't recommend digging in the registry or playing around withdisabling services for most users08/04/2015 - 12:18pm
Matthew Wilsonyes you can turn it off08/04/2015 - 12:15pm
james_fudgeCan you completely disable it though? I think you can minimize what it collects.08/04/2015 - 12:06pm
benohawkThe Win 10 data collection sounds scary, but I think it would be just too much data to be useful08/04/2015 - 11:57am
benohawkNo need to apologize Big Perm08/04/2015 - 11:55am
benohawkThe changing to 0 only being a 1 was local security policy change, not the reghack08/04/2015 - 11:49am
Big PermSorry Beno, it looks like you're right.08/04/2015 - 11:49am
Big PermFrom what I've heard (and obviously I could be wrong here), but I hear even setting it to "0" in the registry will only change to "1" or "Basic" collection. I'll try to find the article I got this from08/04/2015 - 11:40am
benohawkBig Perm, you can disable telemetry, just not through the gui. It's a matter of adding a registry key and disabling a couple services08/04/2015 - 11:34am
Big PermBlazers w/ t-shirts trigger me. This madness must be stopped08/04/2015 - 10:36am
PHX Corphttps://twitter.com/JimSterling Jim Sterling's commentary of the Xbox Gamescom event08/04/2015 - 9:34am
Big PermI'm talking about not being able to fully disable telemetry unless you have Enterprise software. It's just creepy to me08/04/2015 - 9:31am
TechnogeekBig Perm: If you're talking about the image I think you are, then no, not really. The claims it makes are, at best, extremely misleading in many instances.08/04/2015 - 9:28am
E. Zachary KnightBig Perm, That would make logical sense, so of course YouTube would not allow you to set your subscription page as the home page.08/04/2015 - 9:14am
Big PermBy the way. Anyone else kind of spooked by Microsofts data collection that's being reported about Win10? Thinking of finally trying a linux box for general use and Windows for gaming only08/04/2015 - 8:59am
 

Be Heard - Contact Your Politician