Sony Thwarts Mass Account Break-In

October 12, 2011 -

Last night Sony's new SVP & Chief Information Security Officer, Philip Reitinger wrote a lengthy post on the official PlayStation Blog, detailing some questionable mass logins. While some of those attempts to login to accounts by unknown persons were successful, Reitinger assures the public that those accounts have been identified by the company and temporarily locked down. So even though someone is trying to break into accounts for Sony Entertainment Network, PlayStation Network and Sony Online Entertainment, they were not ultimately successful in doing so.

To Sony's credit, at least they are telling subscribers of these services sooner rather than later. Reitinger's complete statement can be found below:

We want to let you know that we have detected attempts on Sony Entertainment Network, PlayStation Network and Sony Online Entertainment (“Networks”) services to test a massive set of sign-in IDs and passwords against our network database. These attempts appear to include a large amount of data obtained from one or more compromised lists from other companies, sites or other sources. In this case, given that the data tested against our network consisted of sign-in ID-password pairs, and that the overwhelming majority of the pairs resulted in failed matching attempts, it is likely the data came from another source and not from our Networks. We have taken steps to mitigate the activity.

Less than one tenth of one percent (0.1%) of our PSN, SEN and SOE audience may have been affected. There were approximately 93,000 accounts globally (PSN/SEN: approximately 60,000 accounts; SOE: approximately 33,000) where the attempts succeeded in verifying those accounts’ valid sign-in IDs and passwords, and we have temporarily locked these accounts. Only a small fraction of these 93,000 accounts showed additional activity prior to being locked. We are currently reviewing those accounts for unauthorized access, and will provide more updates as we have them. Please note, if you have a credit card associated with your account, your credit card number is not at risk. We will work with any users whom we confirm have had unauthorized purchases made to restore amounts in the PSN/SEN or SOE wallet.

As a preventative measure, we are requiring secure password resets for those PSN/SEN accounts that had both a sign-in ID and password match through this attempt. If you are in the small group of PSN/SEN users who may have been affected, you will receive an email from us at the address associated with your account that will prompt you to reset your password.

Similarly, the SOE accounts that were matched have been temporarily turned off. If you are among the small group of affected SOE customers, you will receive an email from us at the address associated with your account that will advise you on next steps in order to validate your account credentials and have your account turned back on.

We want to take this opportunity to remind our consumers about the increasingly common threat of fraudulent activity online, as well as the importance of having a strong password and having a username/password combination that is not associated with other online services or sites. We encourage you to choose unique, hard-to-guess passwords and always look for unusual activity in your account.


Comments

Re: Sony Thwarts Mass Account Break-In

This is definitely a good thing and something I'm going to be keeping my eye on.  You're going to want to look at Kodak 6150, Nuwave Oven Scam, and Bose Cinemate Review for some excellent info on some products. 

Re: Sony Thwarts Mass Account Break-In

About time they start getting this thing figured.  

Check out Roomba Review for all the info.

Re: Sony Thwarts Mass Account Break-In

Evidently, someone didn't get the memo that Sony beefed up their security.

Re: Sony Thwarts Mass Account Break-In

Someone was bound to test it out for themselves.

Re: Sony Thwarts Mass Account Break-In

A big step in the right direction.

 
Forgot your password?
Username :
Password :

Poll

Have you visited a video game arcade in the last year?:

Shout box

You're not permitted to post shouts.
SeanBI wrote up a post detailing my thoughts on this Mojang/Bukkit stuff, feel free to chime in if you wish. http://goo.gl/OFJJIE08/23/2014 - 12:24am
Matthew Wilsonfirst, that crap is wrong. second, isnt this the 3rd time he has quit?08/22/2014 - 12:11pm
Zenhttp://levelsave.com/phil-fish-polytron-doxxed-phil-fish-quits-gaming-sells-fez-polytron/ , https://pbs.twimg.com/media/Bvnhvz5IIAAAVc5.png:large08/22/2014 - 12:03pm
ZenHere are some links to the story and images. http://playeressence.com/polytron-and-phil-fish-hacked-tons-of-personal-info-leaked/ , https://pbs.twimg.com/media/Bvnx8sQCIAAwumB.jpg:large , https://pbs.twimg.com/media/Bvnj_zmCUAAlYWm.jpg:large08/22/2014 - 12:02pm
ZenSo...Phil Fish was apparently hacked on both his Twitter and the Polytron site along with all of his personal information has been given out in a zip file. He has since closed his Twitter and stated that Polytron and the Fez IP are for sale. He wants out.08/22/2014 - 12:01pm
Papa MidnightThe Verge says the sequel to Flappy Bird is nearly impossible. http://www.theverge.com/2014/8/21/6053297/swing-copters-flappy-bird-sequel08/21/2014 - 12:22pm
SleakerPC-Gamer wrote an article on what's going on with the Minecraft stuff: http://www.pcgamer.com/2014/08/21/minecraft-bukkit-team-lead-tries-to-end-development-but-mojang-steps-in/08/21/2014 - 11:55am
SleakerEVE had a high-profile ban today: http://massively.joystiq.com/2014/08/20/eve-online-lottery-site-somer-blink-shutting-down/#continued08/21/2014 - 10:26am
SleakerBut where have all the Ethics gone?08/21/2014 - 9:08am
Sleaker@EZK - one of the bigger things is that since Mojang has owned Bukkit for 2 years now, people contributing to the project have basically been doing work for them pro-bono. On top of never formalizing support. They hid the fact probably to prevent support08/21/2014 - 9:07am
SleakerIf you've played on a server with mods/plugins, you've almost for sure played on a Bukkit-based server.08/21/2014 - 8:56am
SleakerHere's Bukkit's explanation attempt at shutting down due to EULA changes: http://forums.bukkit.org/threads/bukkit-its-time-to-say.305106/08/21/2014 - 8:55am
SleakerEZK - it's the largest server mod for MC, in actuality without it minecraft for sure would not have been as popular (#1 game now).08/21/2014 - 8:54am
SleakerTo the point that it seems they have completely lost what it means to be for-community, and having transparency. Along with dumping restrictive EULA's onto people.08/21/2014 - 8:53am
E. Zachary KnightWhat is Bukkit and why should I care?08/21/2014 - 8:53am
SleakerMinecraft community exploded again today. Apparently Mojang owns all of Bukkit, and never put out a statement saying as such 2 years ago when they acquired them. I have to say, their transition from indie has been rough.08/21/2014 - 8:52am
james_fudgeThere aren't many left in America08/21/2014 - 1:50am
MechaTama31I sure have. Dorky's barcade in Tacoma, WA.08/20/2014 - 5:56pm
Matthew WilsonI have not been to a arcade in years. I know arcades are still big in japan.08/20/2014 - 5:38pm
Sleaker@AE - Ah no it's called GroundKontrol - I was just referring to it as a Bar-Arcade.08/20/2014 - 4:39pm
 

Be Heard - Contact Your Politician