PDA

View Full Version : PSN back online after data breach. You must change passwords [see post 1]


Kymmy
22-04-2011, 17:25
http://www.bbc.co.uk/news/technology-13169518

Millions of gamers are unable to play online as the Playstation Network remains unavailable.

Users are seeing error messages stating the network is "undergoing maintenance" or is "suspended".

In a blog post, makers Sony thanked users for their patience but warned the downtime - which has so far lasted more than 20 hours - could continue for "a day or two".

-------------------------

EDIT (Matt D)

I thought I'd add some links & a summary to the first post (sorry for editing your post, Kymmy :) ).

THE GREAT PSN DATA BREACH

The PlayStation Network (PSN) has suffered an "illegal and unauthorized intrusion", which has resulted in the personal information of all PSN account holders being compromised.

Sony has shut the network down while it investigates the breach (including using an "outside, recognized security firm") and attempts to strengthen and re-build the network.

Personal information which Sony definitely believes has been obtained by an unauthorised person: Name, Address (city, state, zip), Country, Email Address, Birthdate, PlayStation Network/Qriocity password and login, and handle/PSN online ID.

Personal information which Sony believes may have been obtained: Profile data, including purchase history and billing address (city, state, zip), and your PlayStation Network/Qriocity password security answers.

Credit Card information: Although there is not yet any evidence that credit card information has been obtained, Sony says that it "cannot rule out the possibility" and that your card number and expiry date may have been obtained (but not the security code).

The credit card table was encrypted, however the personal data table was not.

If you used the same password on any other sites/services as you use on PSN, then you should change the password for those other sites/services as soon as possible.

If you had a credit or debit card attached to your PSN account, then you should at the very least pay close attention to it and look for any suspicious activity, just in case. If you notice any suspicious transactions, then phone your bank / card provider's fraud line at once.

If don't notice anything but you are still worried about it, then phone your bank or card provider and ask for the card to be cancelled and replaced with a new card due to potential fraud from the PSN data breach.

However, Sony is apparently going to be passing card numbers on to Financial Fraud Action (FFA), which will then pass them on to the relevant banks and card providers, so your card should hopefully be cancelled automatically if Sony believes it was at risk.

If you are worried about the increased possibility of ID theft or credit fraud, due to the personal information which has been stolen (name, address, DOB, etc.), then you can request "Protective Registration (http://www.cifas.org.uk/pr_for_individuals)" from CIFAS (http://www.cifas.org.uk/) (the UK's Fraud Prevention Service). This costs £12 + VAT, and means a "CIFAS warning flag marked Protective Registration will then be placed on the CIFAS National Fraud Database against your name and personal details to indicate that you have been recorded at your own request for your protection". If any credit or certain other services are then applied for in your name, the warning flag tells CIFAS member organisations to be extra vigilant and undertake extra checks to ensure that the application is genuine. The CIFAS flag lasts for one year. An FAQ is here: http://www.cifas.org.uk/pr_faqs


Official updates from the PlayStation Blog:

These are what Sony has said so far, and include various bits of info on what has happened.

26th April - Update on PlayStation Network and Qriocity (http://blog.us.playstation.com/2011/04/26/update-on-playstation-network-and-qriocity/)

27th April - Q&A #1 (http://blog.us.playstation.com/2011/04/27/qa-1-for-playstation-network-and-qriocity-services/)

28th April - Q&A #2 (http://blog.us.playstation.com/2011/04/28/qa-2-for-playstation-network-and-qriocity-services/)

"1st May - Some PlayStation Network And Qriocity Services To Be Available This Week" (http://blog.eu.playstation.com/2011/05/01/some-playstation-network-and-qriocity-services-to-be-available-this-week/)


SOME PLAYSTATION NETWORK AND QRIOCITY SERVICES TO BE AVAILABLE THIS WEEK

Phased Global Rollout of Services to Begin Regionally; System Security Enhanced to Provide Greater Protection of Personal Information.

Tokyo, May 1, 2011 – Sony Computer Entertainment (SCE) and Sony Network Entertainment International (SNEI, the company) announced they will shortly begin a phased restoration by region of PlayStation®Network and Qriocity™ services, beginning with gaming, music and video services to be turned on. The company also announced both a series of immediate steps to enhance security across the network and a new customer appreciation program to thank its customers for their patience and loyalty.

Following a criminal cyber-attack on the company’s data-center located in San Diego, California, U.S.A., SNEI quickly turned off the PlayStation Network and Qriocity services, engaged multiple expert information security firms over the course of several days and conducted an extensive audit of the system. Since then, the company has implemented a variety of new security measures to provide greater protection of personal information. SNEI and its third-party experts have conducted extensive tests to verify the security strength of the PlayStation Network and Qriocity services. With these measures in place, SCE and SNEI plan to start a phased rollout by region of the services shortly. The initial phase of the rollout will include, but is not limited to, the following:

• Restoration of Online game-play across the PlayStation®3 (PS3) and PSP® (PlayStation®Portable) systems
• This includes titles requiring online verification and downloaded games
• Access to Music Unlimited powered by Qriocity for PS3/PSP for existing subscribers
• Access to account management and password reset
• Access to download un-expired Movie Rentals on PS3, PSP and MediaGo
• PlayStation®Home
• Friends List
• Chat Functionality

Working closely with several outside security firms, the company has implemented significant security measures to further detect unauthorized activity and provide consumers with greater protection of their personal information. The company is also creating the position of Chief Information Security Officer, directly reporting to Shinji Hasejima, Chief Information Officer of Sony Corporation, to add a new position of expertise in and accountability for customer data protection and supplement existing information security personnel. The new security measures implemented include, but are not limited to, the following:

• Added automated software monitoring and configuration management to help defend against new attacks
• Enhanced levels of data protection and encryption
• Enhanced ability to detect software intrusions within the network, unauthorized access and unusual activity patterns
• Implementation of additional firewalls

The company also expedited an already planned move of the system to a new data center in a different location that has been under construction and development for several months. In addition, PS3 will have a forced system software update that will require all registered PlayStation Network users to change their account passwords before being able to sign into the service. As an added layer of security, that password can only be changed on the same PS3 in which that account was activated, or through validated email confirmation, a critical step to help further protect customer data.

The company is conducting a thorough and on-going investigation and working with law enforcement to track down and prosecute those responsible for the illegal intrusion.

“This criminal act against our network had a significant impact not only on our consumers, but our entire industry. These illegal attacks obviously highlight the widespread problem with cyber-security. We take the security of our consumers’ information very seriously and are committed to helping our consumers protect their personal data. In addition, the organization has worked around the clock to bring these services back online, and are doing so only after we had verified increased levels of security across our networks,” said Kazuo Hirai, Executive Deputy President, Sony Corporation. “Our global audience of PlayStation Network and Qriocity consumers was disrupted. We have learned lessons along the way about the valued relationship with our consumers, and to that end, we will be launching a customer appreciation program for registered consumers as a way of expressing our gratitude for their loyalty during this network downtime, as we work even harder to restore and regain their trust in us and our services.”

Complimentary Offering and “Welcome Back” Appreciation Program

While there is no evidence at this time that credit card data was taken, the company is committed to helping its customers protect their personal data and will provide a complimentary offering to assist users in enrolling in identity theft protection services and/or similar programs. The implementation will be at a local level and further details will be made available shortly in each region.

The company will also rollout the PlayStation Network and Qriocity “Welcome Back” program, to be offered worldwide, which will be tailored to specific markets to provide our consumers with a selection of service options and premium content as an expression of the company’s appreciation for their patience, support and continued loyalty.

• Each territory will be offering selected PlayStation entertainment content for free download. Specific details of this content will be announced in each region soon.
• All existing PlayStation Network customers will be provided with 30 days free membership in the PlayStation Plus premium service. Current members of PlayStation Plus will receive 30 days free service.
• Music Unlimited powered by Qriocity subscribers (in countries where the service is available) will receive 30 days free service.

Additional “Welcome Back” entertainment and service offerings will be rolled out over the coming weeks as the company returns the PlayStation Network and Qriocity services to the quality standard users have grown to enjoy and strive to exceed those exceptions.

SNEI will continue to reinforce and verify security for transactions before resuming the PlayStation®Store and other Qriocity operations, scheduled for this month.

For more information about the PlayStation Network and Qriocity services intrusion and restoration, please visit http://blog.us.playstation.com or http://blog.eu.playstation.com/

"4th May - Sony’s Response to the U.S. House of Representatives" (http://blog.us.playstation.com/2011/05/04/sonys-response-to-the-u-s-house-of-representatives/)

15th May - Phased restoration has begun.

PS3 system software version 3.61 is now available, via the PS3 directly or the PlayStation website (http://uk.playstation.com/ps3/support/system-software/detail/item370917/Update-features-%28ver-3-61%29/).

This version will force you to change your PSN password, once PSN is back up.

"PlayStation Network Restoration Begins" (http://uk.playstation.com/home/news/articles/detail/item369506/PlayStation-Network-Restoration-Begins/)


Sony Computer Entertainment introduces increased security measures ahead of PSN service restoration.

Sony Computer Entertainment (SCE) and Sony Network Entertainment International (SNEI, the company) will today begin a phased restoration by region of PlayStation Network and Qriocity services. The phased restoration will be on a country by country basis beginning in the Americas, Europe, Australia, New Zealand and the Middle East.

The first phase of restored services for North America and Europe will include:

Sign-in for PlayStation Network and Qriocity services, including the resetting of passwords.

Restoration of online gameplay across PlayStation 3 and PSP.

Playback rental video content, if within rental period, of PlayStation Store Video Store on PS3, PSP and Media Go.

Q Music Unlimited, for current subscribers, on PS3 and PC.

Access to third party services such as VidZone and MUBI.

'Friends' category on PS3, including Friends List, Chat Functionality, Trophy Comparison, etc.

PlayStation Home.

Update: PSN is now back online in the UK. The first time you try to log in, with firmware 3.61, you will be forced to change your password. Full restoration of PSN services (e.g .PSN Store) won't be complete until the end of May.

Other links:

"MoneySavingExpert - PlayStation users' data stolen in hack: what should you do?" (http://www.moneysavingexpert.com/news/cards/2011/04/sony-playstation-users-data-stolen-in-hack)

Statement from the Information Commissioner's Office (http://www.ico.gov.uk/~/media/documents/pressreleases/2011/sony_statement_20110427.ashx)


27 April 2011

Response to data breach involving Sony’s PlayStation Network

An ICO spokesperson said:

The Information Commissioner’s Office takes data protection breaches extremely seriously. Any business or organisation that is processing personal information in the UK must ensure they comply with the law, including the need to keep data secure.
We have recently been informed of an incident which appears to involve Sony. We have contacted Sony and will be making further enquiries to establish the precise nature of the incident before deciding what action, if any, needs to be taken by this office.

Zing
22-04-2011, 17:28
Possibly another update coming to stop the CFW's with certain patches playing online perhaps

Ravenheart
23-04-2011, 08:37
Update from Sony this morning

“An external intrusion on our system has affected our PlayStation Network and Qriocity services, In order to conduct a thorough investigation and to verify the smooth and secure operation of our network services going forward, we turned off PlayStation Network & Qriocity services on the evening of Wednesday, April 20th.”

Source (http://blog.eu.playstation.com/2011/04/23/update-on-playstation-network-qriocity-services/)

No ETA on it being resolved.

Zing
23-04-2011, 09:33
Ha ha sounds like its that group using the name "anonymous" who has threatened to disrupt Sony as much as they can

adzii_nufc
23-04-2011, 14:29
They should try hacking something bigger than Sony, Maybe the US government

They wont be so Anonymous anymore :)

craigj2k12
24-04-2011, 22:28
if you look at the anonymous website, they have a big image saying "it wasnt us!"

im sure they would admit it, if it was them

Zing
24-04-2011, 22:53
It could be Sony subterfuge trying to get public opinion onside.

At the end of the day half the scene wouldnt have been interested in hacking the system if they didnt remove the linux options. The only defense Sony has now is PSN.

I have stayed on 3.41 and a Jailbreak dongle myself but if and when 3.56 and above gets a CFW I may well update but PSN I aint bothered about anyway

dilli-theclaw
25-04-2011, 19:40
Another update.

http://arstechnica.com/gaming/news/2011/04/psn-update-sony-isnt-sure-your-credit-card-data-is-safe.ars

Graham M
25-04-2011, 20:33
Grrr I just bought a new PS3 today and am transferring the data over, just hope I can disable the stuff on the old console after the transfer without any ill effects. Any ideas?

wwe
25-04-2011, 20:35
Hope they get it back on soon.

DABhand
25-04-2011, 20:44
It's not by anonymous, it's a chinese group who are not happy that their Jailbreak/CRC encryption God has been told no by Sony lawyers :P

I also expect them to update PSN to detect firmware changes and disable any USB bootup access.

Tezcatlipoca
26-04-2011, 22:15
Time to change passwords & keep an eye on the credit card? ...

http://blog.us.playstation.com/2011/04/26/update-on-playstation-network-and-qriocity/


Posted by Patrick Seybold // Sr. Director, Corporate Communications & Social Media

Thank you for your patience while we work to resolve the current outage of PlayStation Network & Qriocity services. We are currently working to send a similar message to the one below via email to all of our registered account holders regarding a compromise of personal information as a result of an illegal intrusion on our systems. These malicious actions have also had an impact on your ability to enjoy the services provided by PlayStation Network and Qriocity including online gaming and online access to music, movies, sports and TV shows. We have a clear path to have PlayStation Network and Qriocity systems back online, and expect to restore some services within a week.

We’re working day and night to ensure it is done as quickly as possible. We appreciate your patience and feedback.

Valued PlayStation Network/Qriocity Customer:
We have discovered that between April 17 and April 19, 2011, certain PlayStation Network and Qriocity service user account information was compromised in connection with an illegal and unauthorized intrusion into our network. In response to this intrusion, we have:

Temporarily turned off PlayStation Network and Qriocity services;
Engaged an outside, recognized security firm to conduct a full and complete investigation into what happened; and
Quickly taken steps to enhance security and strengthen our network infrastructure by re-building our system to provide you with greater protection of your personal information.

We greatly appreciate your patience, understanding and goodwill as we do whatever it takes to resolve these issues as quickly and efficiently as practicable.

Although we are still investigating the details of this incident, we believe that an unauthorized person has obtained the following information that you provided: name, address (city, state, zip), country, email address, birthdate, PlayStation Network/Qriocity password and login, and handle/PSN online ID. It is also possible that your profile data, including purchase history and billing address (city, state, zip), and your PlayStation Network/Qriocity password security answers may have been obtained. If you have authorized a sub-account for your dependent, the same data with respect to your dependent may have been obtained. While there is no evidence at this time that credit card data was taken, we cannot rule out the possibility. If you have provided your credit card data through PlayStation Network or Qriocity, out of an abundance of caution we are advising you that your credit card number (excluding security code) and expiration date may have been obtained.

(snip)

Damien
26-04-2011, 22:36
That must mean they were storing passwords in the clear, i.e no hashing, utterly useless morons. That really is amateur hour.

Stephen
26-04-2011, 22:38
I always knew the psn was poor and it's now confirmed. Sony are totally useless.

PeteLockwood
26-04-2011, 22:41
only psn, who cares ? if it was xbox live it would be the end of the world!!! :D

craigj2k12
27-04-2011, 12:38
i have both an xbox and a ps3 and i think ps3 is far better

Stephen
27-04-2011, 12:53
Lets not turn the thread in to another PS3 Vs Xbox one. Thank you.

Personally the PSN is really poor compared to Live and its also been confirmed that Sony had little or no encryption/security on customer details.

Not good at all. They better get this all sorted soon and will have to prove to people that they are implementing new security measures to prevent something like this happening again.

Tezcatlipoca
27-04-2011, 14:15
Even if users' credit card numbers & security answers haven't been stolen, there is still a lot of sensitive personal information which has... Name, Address, Date of Birth, email address, etc. ...

I hope no one used the same password for PSN on any other sites or services...


If anyone has their credit card info on PSN, I think you should cancel the card, just in case.

If anyone is really worried about potential fraud or ID theft due to the breach, then you can register (for a small fee) with CIFAS for extra protection:

http://www.cifas.org.uk/pr_for_individuals


If you have been the victim of a mugging or burglary and personal identification documents have been stolen, there is a risk that they could be used fraudulently by the thief to obtain credit or other products and services in your name. For an annual administration fee of £12 + VAT CIFAS offers a service to protect your name and personal details from being misused in this way.

When you request 'Protective Registration', a CIFAS warning flag marked Protective Registration will then be placed on the CIFAS National Fraud Database against your name and personal details to indicate that you have been recorded at your own request for your protection.

CIFAS Member organisations dealing with requests for credit or other services from someone who has taken out CIFAS Protective Registration will be alerted to the need for caution. CIFAS Members, when undertaking their routine checks against your personal name and details will see “CIFAS – DO NOT REJECT – VALIDATION REQUIRED”. As a result of this, CIFAS Members will undertake additional checks to ascertain that the applicant is genuine and not a fraudster trying to use your details to commit identity theft. .

If you believe that the identity of a deceased person could be used by a fraudster to obtain credit or other products and services, a CIFAS Protective Registration may be placed by a relative or executor against the deceased person’s name and personal details.

Once your application for Protective Registration has been processed, the entry will be placed on the database and you will receive confirmation. The data will remain on the database for at least a year from the date of the most recent fraudulent activity, but you can request the removal or extension of the Protective Registration by writing to the address below.

To make a CIFAS Protective Registration, click here to download the form (http://www.cifas.org.uk/secure/contentPORT/uploads/documents/protectiveregistration.pdf). The form must be opened with Adobe Reader, which is free software that lets you view and print Adobe Portable Document Format (PDF) files. Please click the link to download the latest version of Adobe Reader. Once the form is complete, return it to the following address:

CIFAS Protective Registration
Capital House
e-state
Bankhead Crossway South
Edinburgh
EH11 4EP

Alternatively you can telephone on 0330 100 0180 (Mon-Fri 8am-8pm, 10am-1pm Sat). Please only use this telephone number for Protective Registration matters; for any other CIFAS queries, please click here (http://www.cifas.org.uk/contact_us).

Click here (http://www.cifas.org.uk/pr_faqs) for answers to the most frequently asked questions about Protective Registration.


I can't actually remember which card I used on PSN. If it was my debit card, then I'm fine as it's long since changed & the one on PSN would be expired. I don't think I used a credit card, but I'm not 100% sure now...

craigj2k12
27-04-2011, 14:36
as has been said, they need to sort out security, how could they not have any form of protection on the data? surely thats a data protection issue??

and while they are patching their systems up, they can sort out something with the CFW's, I personally dont mind people loading whatever software they want, afterall, your not forced to use windows, you can install any OS you want on your computer, but when its used to start hacking games, that does my nut in. Theres no point trying to get ranked highly in the world on call of duty because the top million players have all hacked, and there are people who have hacked to max their scores out, then others who have boosted them slightly, as made it less obvious that its a hacked score.

so all in all, sony need to boost security on all fronts

Tezcatlipoca
27-04-2011, 15:49
as has been said, they need to sort out security, how could they not have any form of protection on the data? surely thats a data protection issue??


I emailed the Information Commissioner's Office (http://www.ico.gov.uk/) last night, via the Data Protection Complaints page (http://www.ico.gov.uk/complaints/data_protection.aspx).

Just a query, rather than a full official complaint using the DPA complaint form (http://www.ico.gov.uk/complaints/~/media/documents/library/Data_Protection/Forms/data_protection_complaint_form.ashx).

casework@ico.gsi.gov.uk

---------- Post added at 14:49 ---------- Previous post was at 13:49 ----------

LOLZ...

https://www.cableforum.co.uk/images/local/2011/04/7.gif

http://dribbble.com/system/users/22729/screenshots/155968/psstore-top5.jpg

Hom3r
27-04-2011, 19:14
I heard on CBS News (on Sky News 1am) that some 75,000,000 credit details may have been stolen.

If this true then Sony could face a lot of agro from those people who have money taken out of their credit card.

I would call my credit card company and get them to send a replacement card ASAP.

Thank god I'm on XBL.

Tezcatlipoca
27-04-2011, 20:27
Well, it's 77 million total PSN accounts. Not all of them will have credit/debit card info associated with them.

I checked through my emails to find out which card I used for PSN... It was an old & now expired card, last used to purchase stuff from PSN in late 2008, so I'm safe regarding that, at least.

Still worrying re. all the other data though... name, address, DOB, email, etc., & potentially also security answers (e.g. mother's maiden name).

Stephen
27-04-2011, 20:35
I know people are fearing the worst but I don't think they will do anything at all with the data. I think they were just out to totally screw Sony and show it is easy it would be.

Tezcatlipoca
27-04-2011, 20:44
... Or they may sell the data on to credit/ID thieves...

LSainsbury
27-04-2011, 21:58
Lets not turn the thread in to another PS3 Vs Xbox one. Thank you.

Personally the PSN is really poor compared to Live.....

Nice double-standards there! :angel:

---------- Post added at 20:58 ---------- Previous post was at 20:56 ----------



Thank god I'm on XBL.


...until that gets hacked....

DABhand
27-04-2011, 22:11
Heres the culprit

http://www.vwaskar.pwp.blueyonder.co.uk/fun/GeneralsHacker.jpg

Stephen
27-04-2011, 22:24
Nice double-standards there! .

I was referring to the post above mine.

I was talking about the actual on line services of the console in my post, the post before mine just claimed one console was rubbish compared to the other.

Tod
27-04-2011, 22:44
I was referring to the post above mine.

I was talking about the actual on line services of the console in my post, the post before mine just claimed one console was rubbish compared to the other.

OK so how is this different to (in the same thread BEFORE craig):

Sony are totally useless.

I think you will find that is double standards.

Personally Live is poor compared to PSN because I don't have it :D

Hom3r
27-04-2011, 23:10
Well with regards to the security question I would never pick a dangerous one, I have in the past selected other less senative ones, fav drink, first pet etc.

wwe
27-04-2011, 23:38
have the hackers got everyone details who goes on the psn?

Tod
28-04-2011, 01:39
have the hackers got everyone details who goes on the psn?

Nobody seems to know for definite. Could be some, could be all, which is why it is best to assume they have your details and take appropriate precautions.

Tezcatlipoca
28-04-2011, 04:37
MoneySavingExpert - PlayStation users' data stolen in hack: what should you do? (http://www.moneysavingexpert.com/news/cards/2011/04/sony-playstation-users-data-stolen-in-hack)


(snip)

Should I be worried about my card details?

Financial Fraud Action (FFA), which represents card firms, says Sony is due to pass it the details of all card numbers that may have been stolen, which FFA will then distribute to banks and building societies.

FFA says this is standard procedure after a hack.

It therefore says anyone who has entered their card number on the PlayStation network does not need to contact their provider as firms will cancel many cards automatically.

FFA adds in a statement: "Customers should keep a close eye on their account for any unusual activity – if they spot any they should contact their bank or card company.

"If anyone is the innocent victim of fraud they will get their money back from their bank or card company."

Sony is not certain that credit card details have been stolen but states on its website: "While there is no evidence credit card data was taken we cannot rule out the possibility.

"To be on the safe side we are advising your credit card number (excluding security code) and expiration date may also have been obtained."

What about my passwords?

Names, addresses, PlayStation log-in details and email addresses are also thought to have been taken by the hackers.

FFA is therefore also advising users to change passwords for all their accounts, be it a bank or email account, if it is the same as they use on PlayStation.

And what about ID fraud?

Playstation users also need to be alert to the threat of identity theft, according to credit reference agency Equifax.

It says fraudsters only need three items of personal information to be able to steal an individual's identity.

If you're worried, you can check your credit report to identify whether fraudsters try to open accounts in your name (see the Credit Rating guide to check for free).

(snip)

---------- Post added at 03:37 ---------- Previous post was at 03:04 ----------

New Q&A from Sony:

http://blog.us.playstation.com/2011/04/27/qa-1-for-playstation-network-and-qriocity-services/

Pog66
28-04-2011, 14:12
The legal repercussions have started - Link (http://www.bbc.co.uk/news/technology-13192359)

DABhand
28-04-2011, 17:08
I see the American's are first to sue anything not tied down again lol

But then again even if Sony had brilliant network security and it was a hard job for any hacker to gain access, whether its .htaccess or whatever, the American's would sue anyways :P

Hell they would sue if there was a pin point stain on a case of a PS3. "I am suing Sony for the sum of $100,000 because the stain distressed my son and the whole family".

Tezcatlipoca
28-04-2011, 17:18
Statement from the Information Commissioner's Office (http://www.ico.gov.uk/~/media/documents/pressreleases/2011/sony_statement_20110427.ashx)


27 April 2011

Response to data breach involving Sony’s PlayStation Network

An ICO spokesperson said:

The Information Commissioner’s Office takes data protection breaches extremely seriously. Any business or organisation that is processing personal information in the UK must ensure they comply with the law, including the need to keep data secure.
We have recently been informed of an incident which appears to involve Sony. We have contacted Sony and will be making further enquiries to establish the precise nature of the incident before deciding what action, if any, needs to be taken by this office.

Chrysalis
29-04-2011, 15:40
I learned a while back if you know someone has the capability to either DDOS you to death or knows what he is doing in regards to security compromise then dont mess them about, just ignore them as you dont want their focus. Nothing is 100% secure, its impossible. The best in the world if focused will get in to anything.

Stuart
29-04-2011, 16:32
I learned a while back if you know someone has the capability to either DDOS you to death or knows what he is doing in regards to security compromise then dont mess them about, just ignore them as you dont want their focus. Nothing is 100% secure, its impossible. The best in the world if focused will get in to anything.

With due respect, your situation is a little different to Sony's. The sites you run probably have little interest for hackers. When they hack Sony, not only do they get the prestige (amongst the hacker networks) of hacking a major corporation, but there is also the draw that they can potentially access tens of millions of credit card details.

In short, if you ignore a hacker, he or she will probably go away. If Sony does, word will get round and it'll actually attract more hackers.

Tezcatlipoca
29-04-2011, 16:38
Another update...

28th April - Q&A #2 (http://blog.us.playstation.com/2011/04/28/qa-2-for-playstation-network-and-qriocity-services/)

Ravenheart
29-04-2011, 16:46
Claims now circulating on a number of sites that the database of credit card details is up for sale :(

Source (http://www.mcvuk.com/news/44131/PSN-Credit-card-details-up-for-sale?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+mcvuk%2FoXMK+%28MCV%3A+games+ industry+news%29)

& Here (http://bits.blogs.nytimes.com/2011/04/28/hackers-claim-to-have-playstation-users-card-data/?smid=tw-nytimesbits&seid=auto)

Chrysalis
29-04-2011, 18:28
With due respect, your situation is a little different to Sony's. The sites you run probably have little interest for hackers. When they hack Sony, not only do they get the prestige (amongst the hacker networks) of hacking a major corporation, but there is also the draw that they can potentially access tens of millions of credit card details.

In short, if you ignore a hacker, he or she will probably go away. If Sony does, word will get round and it'll actually attract more hackers.

I have had a lot of attention in the past, a network I ran was subject to over 30gigabit DDOS that lasted for weeks and got press attention, the guy eventually went on the run from the FBI as well as I wasnt the only victim. He is now in jail.

Anyone big or small can be a victim.

I have also been subject to other attacks although much weaker and managed to persuade those attackers to stop.

It was the co-operation of above.net and a couple of other upstream providers who were willing to filter out the traffic based on data I passed on that allowed me and my colleagues to keep services online during the large attack. They all did this at no cost surprisingly so was very nice of them, as the amount of traffic filtered must have ran into 100's of terabytes. Although we could have kept services online without filtering the costs wouldnt have been viable. Someone on our behalf one of our users retalliated as well against the dns servers controlling his botnets as he had a weakpoint, this also gave us about 2 days reprieve whilst he rerouted his dns. Apparently it was the first time someone had managed to kill his botnet and the attacks were short after he recovered and moved onto another target, but by then it was too late for him and we knew his address.

The same rules applies to anyone or company really and that is dont think you invincable in the online world and be careful of who you upset.

as an added note the sites were not web sites and were direct competition to the attacker.

wwe
29-04-2011, 20:25
any news when we likley to be back on?

broadbandking
30-04-2011, 01:25
Looking from the updates some parts will be running from next week Wednesday, great another weekend with out a bit of online action after a long day of resting in the garden.

Ravenheart
01-05-2011, 10:24
Announcement from the Sony press conference this morning

http://blog.eu.playstation.com/2011/05/01/some-playstation-network-and-qriocity-services-to-be-available-this-week/

It details some of the changes to their security systems and also announces their "Welcome Back" Program

• Each territory will be offering selected PlayStation entertainment content for free download. Specific details of this content will be announced in each region soon.
• All existing PlayStation Network customers will be provided with 30 days free membership in the PlayStation Plus premium service. Current members of PlayStation Plus will receive 30 days free service.
• Music Unlimited powered by Qriocity subscribers (in countries where the service is available) will receive 30 days free service.

Additional “Welcome Back” entertainment and service offerings will be rolled out over the coming weeks as the company returns the PlayStation Network and Qriocity services to the quality standard users have grown to enjoy and strive to exceed those exceptions.

Tod
01-05-2011, 12:06
I think that is a pretty good offer of free services for the downtime. The 30 days PSN and Qriocity for those subscribed was pretty much a must do, but to give all users free PSN + and some free content is a pretty good sweetner.

Fitze73
01-05-2011, 12:20
great another weekend with out a bit of online action after a long day of resting in the garden.

luckily for me and some of the rest of you guys we have both ps3's and 360's

Tezcatlipoca
01-05-2011, 15:44
So... what's the betting that the free content is just a theme? ;)

Not remotely bothered about the free month of PlayStation Plus, as I think its "benefits" are only really of any use if you continue to subscribe?

Still, it's good that they're offering something, and it's good to have another more comprehensive update on what's going on.

wwe
01-05-2011, 17:32
whats on the play station plus anyway?

Tezcatlipoca
01-05-2011, 17:35
http://uk.playstation.com/playstationplus/

wwe
01-05-2011, 17:45
http://uk.playstation.com/playstationplus/

thanks

Chrysalis
01-05-2011, 18:45
who thinks it will get breached again?

sniper007
01-05-2011, 18:57
Does anyone know how I can find out if I ever entered my credit card details into the sony network? I can't remember if I ever did.

Graham M
01-05-2011, 19:09
Just go into Billing Details when it comes back online :confused:

Tezcatlipoca
01-05-2011, 19:35
who thinks it will get breached again?

Hopefully not...


(snip)

...Since then, the company has implemented a variety of new security measures to provide greater protection of personal information. SNEI and its third-party experts have conducted extensive tests to verify the security strength of the PlayStation Network and Qriocity services...

(snip)

Working closely with several outside security firms, the company has implemented significant security measures to further detect unauthorized activity and provide consumers with greater protection of their personal information. The company is also creating the position of Chief Information Security Officer, directly reporting to Shinji Hasejima, Chief Information Officer of Sony Corporation, to add a new position of expertise in and accountability for customer data protection and supplement existing information security personnel. The new security measures implemented include, but are not limited to, the following:

• Added automated software monitoring and configuration management to help defend against new attacks
• Enhanced levels of data protection and encryption
• Enhanced ability to detect software intrusions within the network, unauthorized access and unusual activity patterns
• Implementation of additional firewalls

The company also expedited an already planned move of the system to a new data center in a different location that has been under construction and development for several months.

(snip)

Does anyone know how I can find out if I ever entered my credit card details into the sony network? I can't remember if I ever did.

If you never actually purchased anything, then you'll just have to wait & check as Graham said.

However, credit card info should hopefully be OK. It was in the "probably not compromised but we'd better warn people anyway" category, unlike your name, address, DOB etc. (which was all in the "oops, that's all been taken" category). Sony said all Credit Card info was encrypted (& I think it may have been on a separate server), which from what I have read is a requirement of international payment card industry security standards.

And according to MSE:

http://www.moneysavingexpert.com/news/cards/2011/04/sony-playstation-users-data-stolen-in-hack


Should I be worried about my card details?

Financial Fraud Action (FFA), which represents card firms, says Sony is due to pass it the details of all card numbers that may have been stolen, which FFA will then distribute to banks and building societies.

FFA says this is standard procedure after a hack.

It therefore says anyone who has entered their card number on the PlayStation network does not need to contact their provider as firms will cancel many cards automatically.

FFA adds in a statement: "Customers should keep a close eye on their account for any unusual activity – if they spot any they should contact their bank or card company.

"If anyone is the innocent victim of fraud they will get their money back from their bank or card company."

Sony is not certain that credit card details have been stolen but states on its website: "While there is no evidence credit card data was taken we cannot rule out the possibility.

"To be on the safe side we are advising your credit card number (excluding security code) and expiration date may also have been obtained."

sniper007
01-05-2011, 21:56
Just go into Billing Details when it comes back online :confused:

I formatted my PS3 when I got a new HDD and I don't know even what my login and password were/are. Can I reset that? I don't really understand how it works. Signed up once ages ago and never used it.

wwe
01-05-2011, 23:11
I formatted my PS3 when I got a new HDD and I don't know even what my login and password were/are. Can I reset that? I don't really understand how it works. Signed up once ages ago and never used it.

yer you can reset it. you just had to enter some of your details and it will reset it for you

sniper007
02-05-2011, 11:02
On the Playstation I mean? Or do I go online to a website to reset it? Will it recognize me if I have formatted and used a different HDD and/or console? My console was repaired as well before but I may have been given new internals/refurb since I signed up.

Tod
02-05-2011, 11:43
On the Playstation I mean? Or do I go online to a website to reset it? Will it recognize me if I have formatted and used a different HDD and/or console? My console was repaired as well before but I may have been given new internals/refurb since I signed up.

Sony mentioned about being able to change the password using confirmation from your registered email address as well. I am sure they will email you in the week, but once PSN is restored your PS3 will update it's firmware and tell you what to do.

SnoopZ
02-05-2011, 17:36
Sony Online Entertainment servers have now been shut down due to an unnamed intrusion!

http://www.neowin.net/news/sony-online-entertainment-shuts-down-servers-due-to-unnamed-intrusion

wwe
02-05-2011, 21:10
On the Playstation I mean? Or do I go online to a website to reset it? Will it recognize me if I have formatted and used a different HDD and/or console? My console was repaired as well before but I may have been given new internals/refurb since I signed up.

yer it be fine. you can do it though your ps3 or on the playstation website

Tezcatlipoca
03-05-2011, 02:16
Sony Online Entertainment servers have now been shut down due to an unnamed intrusion!

http://www.neowin.net/news/sony-online-entertainment-shuts-down-servers-due-to-unnamed-intrusion

Oops...

http://uk.pc.ign.com/articles/116/1165583p1.html


Sony Online Entertainment confirmed today it is investigating an security breach into its network systems (http://pc.ign.com/articles/116/1165452p1.html) and that hackers may have stolen SOE customer information.

A spokesperson said this was not a second attack, and the temporary take down of SOE services was related to the ongoing investigation of the external intrusion that caused PlayStation Network and Qriocity services to shut down last month.

"This information, which was discovered by engineers and security consultants reviewing SOE systems, showed that personal information from approximately 24.6 million SOE accounts may have been stolen, as well as certain information from an outdated database from 2007," SOE said in a statement.

"The information from the outdated database that may have been stolen includes approximately 12,700 non-U.S. credit or debit card numbers and expiration dates (but not credit card security codes), and about 10,700 direct debit records of certain customers in Austria, Germany, Netherlands and Spain."

The personal information of the approximately 24.6 million SOE accounts that was illegally obtained, to the extent it had been provided to SOE, is as follows:

- name

- address

- e-mail address

- birthdate

- gender

- phone number

- login name

- hashed password.

In addition to the information above, the 10,700 direct debit records from accounts in Austria, Germany, Netherlands and Spain, include:

- bank account number

- customer name

- account name

- customer address.

SOE says it will give customers 30 days of additional time on their subscriptions "in addition to compensating them one day for each day the system is down." The company is also outlining a "make good" plan for its multiplatform MMOs - DC Universe Online and Free Realms - with more details coming this week.

SOE posted a notice (http://www.soe.com/securityupdate/) on its website saying, "There is no evidence that our main credit card database was compromised. It is in a completely separate and secured environment."

Copyright 1996-2011, IGN Entertainment, Inc.

Chrysalis
03-05-2011, 03:50
storing encrypted is standard practice now days for anything billing related so is poor from sony in that regard.

Kymmy
03-05-2011, 10:03
http://www.bbc.co.uk/news/technology-13256817

Sony has warned that almost 25 million extra gaming users may have had their personal details taken in a hacker attack.

pabscars
03-05-2011, 12:28
I use my work email addy for one of my PSN accounts and since receiving the email from Sony regarding the PSN breach, I've had dozens of spam emails from eastern european ladies looking for relationships and seeking contact via Skype.

Obviously I deleted them all and added the sender to the blocked list but a coincidence I think not.

Fitze73
03-05-2011, 12:36
I've had dozens of spam emails from eastern european ladies looking for relationships and seeking contact via Skype.

at least it wasnt for men eh paul lol :)

pabscars
03-05-2011, 13:33
at least it wasnt for men eh paul lol :)

I know,,,,, you would have been dead jealous hay Fitze lol ;)

:D

Couldnt resist :p:

Tod
03-05-2011, 14:55
As part of my yahoo mail package I have a unique email address for my PSN, and I have received no spam at all on it.

craigj2k12
04-05-2011, 14:00
As part of my yahoo mail package I have a unique email address for my PSN, and I have received no spam at all on it.

i too havent received any more spam than usual

pabscars
04-05-2011, 14:03
i too havent received any more spam than usual

May of been a fluke then, just me being suspicious.

Fingers crossed it's all back up and running this evening, I'm missing GT5

Tod
04-05-2011, 14:14
I just want to get my PSN+ stuff, it's the turn of the month now! :D

Although I hope it is not dumbed down as it is free to all this month!

pabscars
04-05-2011, 15:19
I just want to get my PSN+ stuff, it's the turn of the month now! :D

Although I hope it is not dumbed down as it is free to all this month!

One suspect's their servers may be running a tad warm this hevening :D,

I wonder if sony have taken advantage of this to upgrade their servers capacity because they normally grind to a halt when map pack's get released.

Tezcatlipoca
04-05-2011, 21:40
"Sony’s Response to the U.S. House of Representatives" (http://blog.us.playstation.com/2011/05/04/sonys-response-to-the-u-s-house-of-representatives/)

Today, the Subcommittee on Commerce, Manufacturing and Trade of the U.S. House of Representatives Committee on Energy and Commerce held a hearing in Washington, DC on “The Threat of Data Theft to American Consumers.”

Kazuo Hirai, Chairman of the Board of Directors of Sony Computer Entertainment America, submitted written answers to questions posed by the subcommittee about the large-scale, criminal cyber-attack we have experienced. We wanted to share those answers with you (click here).

In summary, we told the subcommittee that in dealing with this cyber attack we followed four key principles:

1. Act with care and caution.
2. Provide relevant information to the public when it has been verified.
3. Take responsibility for our obligations to our customers.
4. Work with law enforcement authorities.

We also informed the subcommittee of the following:

* Sony has been the victim of a very carefully planned, very professional, highly sophisticated criminal cyber attack.

* We discovered that the intruders had planted a file on one of our Sony Online Entertainment servers named “Anonymous” with the words “We are Legion.”

* By April 25, forensic teams were able to confirm the scope of the personal data they believed had been taken, and could not rule out whether credit card information had been accessed. On April 26, we notified customers of those facts.

* As of today, the major credit card companies have not reported any fraudulent transactions that they believe are the direct result of this cyber attack.

* Protecting individuals’ personal data is the highestpriority and ensuring that the Internet can be made secure for commerce is also essential. Worldwide, countries and businesses will have to come together to ensure the safety of commerce over the Internet and find ways to combat cybercrime and cyber terrorism.

* We are taking a number of steps to prevent future breaches, including enhanced levels of data protection and encryption; enhanced ability to detect software intrusions, unauthorized access and unusual activity patterns; additional firewalls; establishment of a new data center in an undisclosed location with increased security; and the naming of a new Chief Information Security Officer.

(snip)

craigj2k12
05-05-2011, 01:04
* We are taking a number of steps to prevent future breaches, including enhanced levels of data protection and encryption; enhanced ability to detect software intrusions, unauthorized access and unusual activity patterns; additional firewalls; establishment of a new data center in an undisclosed location with increased security; and the naming of a new Chief Information Security Officer.

so basically they have sacked the guy in charge of security, set up new servers, and added encryption

---------- Post added 05-05-2011 at 00:04 ---------- Previous post was 04-05-2011 at 23:34 ----------

does anyone know when PSN will be back online?

pabscars
05-05-2011, 09:06
Going off word of mouth from a mate, he was expecting the PSN network to be back up and running at 1am this morning, but because Sony had found that another 20 million users details had been stolen it may be delayed further, how true this is I cant say.

Just to add

I had a phone call from a guy claiming to be from Northern Rock last night saying they wish to discuss something with me but before they could proceed they need to ask some security questions, so I said unless your willing to disclose what its about you aint getting jack out of me.

This went back and too a few times so I said to the guy listen, given the fact that PSN has just been hacked, I'm not comfortable handing over personal info over the phone, the chap was very understanding, gave me his name and number and asked me to ring back in the morning.

It's probably genuine as I have dealing's with NR but I'm not taking any chances.

Tod
05-05-2011, 11:03
Sony have been very quiet again, looks like this week is off then!

Also I am confused at how people are still posting on the official PS forums when you can't log into PSN? Hows that work then?

DABhand
05-05-2011, 13:31
Probably seperate MYSQL database for the forums.

Chrysalis
05-05-2011, 13:32
also likely different physical servers.

Tod
05-05-2011, 15:47
Yeah, but then I would be able to log in - and I can't?

Ravenheart
05-05-2011, 18:29
Sony knew PSN had security flaws before it was hacked (http://www.develop-online.net/news/37592/Sony-We-knew-PSN-security-flaws?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+developmag%2Fifbh+%28Develop% 29)!

'We have to admit we were not fully sufficient' exec admits

Sony was internally aware of security shortcomings before its PlayStation Network was hacked, the company has said.

Chrysalis
05-05-2011, 19:51
what he said about security updates is very true, I know this first hand when I have had people telling me to prioritise uptime over patching updates. However alot of updates would only need a few seconds downtime most of the time and in addition a company the size of sony I would expect to have redundant setup's so they can take servers offline without affecting uptime.

pabscars
05-05-2011, 20:14
So when's it coming back online, I'm getting the shakes man :D:D

Just kidding

So has anyone got any firm news, a mate just text me saying it could be on by 10pm tonight or tomorrow, it would appear the goalpost's are continually moving.

The same mate also said PSN is ready to go and that Japan will be first, again how true this is I dunno.

craigj2k12
06-05-2011, 01:33
all your trophies will be gone!!!! all account details were on a memory stick, buried in the sea, with bin laden! all your progress will be lost and you will be forced to create a new account

yeah yeah i know its BS, just like every other rumour. if sony had given a time, either they would make it official, or someone, a news site or something would post it

Maggy
06-05-2011, 13:48
http://www.bbc.co.uk/news/business-13288532

Sony has blamed the online vigilante group Anonymous for indirectly allowing the security breach that allowed a hacker to gain access to the personal data of more than 100m online gamers.
In a letter to the US Congress, Sony said the breach came at the same time as it was fighting a denial-of-service attack from Anonymous.

DABhand
06-05-2011, 17:52
It is not Anonymous, it is a Chinese hacking group, who announced today they will go for a 3rd attack because of the way Sony has conducted themselves during the previous 2 attacks.

pabscars
06-05-2011, 18:39
It is not Anonymous, it is a Chinese hacking group, who announced today they will go for a 3rd attack because of the way Sony has conducted themselves during the previous 2 attacks.

Show us the link then DAB, you should be a dabhand at this by now :p:

Ravenheart
06-05-2011, 18:55
Quite a few places reporting it now

http://www.eurogamer.net/articles/2011-05-06-third-psn-hack-attack-this-weekend

pabscars
06-05-2011, 19:28
I'm getting hacked off with all this now :tiptoe: , thanks for the linky Ravenheart :D

Ravenheart
06-05-2011, 19:45
More information on the "Welcome Back" scheme and Sony are working on an EU version of the years free identity theft insurance offered to US users.

http://blog.eu.playstation.com/2011/05/06/scee-identity-theft-protection-offering/

Chrysalis
06-05-2011, 20:03
they stuck in a hard place.

the nightmare scenario is they bring services back up (I expect they ready to do this now) but then get compromised again making them look incompetant. At some point they will have to bring services back online, they cant hide behind been offline forever.

Tezcatlipoca
06-05-2011, 21:56
http://www.bbc.co.uk/news/business-13288532

LOL. It's hardly the fault of "Anonymous" that Sony was allegedly using...outdated versions of the Apache Web server software, which "was unpatched and had no firewall installed."

Security Expert: Sony Knew Its Software Was Obsolete Months Before PSN Breach (http://consumerist.com/2011/05/security-expert-sony-knew-its-software-was-obsolete-months-before-psn-breach.html)

Chrysalis
06-05-2011, 22:29
I have seen corporate sites using versions of apache years old. given that updating apache will typically give a downtime of about 1 second up to maybe 5 seconds or so if busy for the restart I think its not excusable.

DABhand
07-05-2011, 02:45
Even then they could have had a sister server running an updated apache while the main server was updated and restarted.

Chrysalis
07-05-2011, 03:16
A company the size of sony I would expect to have multiple apache sitting behind a proxy (proxy also acts as security filter and cache) and as you said be able to take down apache slaves without downtime. But what I would expect and what they do can obviously be very different things.

Ravenheart
07-05-2011, 09:04
Latest update
(http://blog.eu.playstation.com/)

As you may know, we’ve begun the process of restoring the service through internal testing of the new system. We’re still working to confirm the security of the network infrastructure, as well as working with a variety of outside entities to confirm with them of the security of the system.

Ravenheart
07-05-2011, 21:46
Another day another data breach?

May 7 (Reuters) - Sony said on Saturday it had removed off the Internet the personal details of 2,500 people that had been stolen by hackers and posted on a website.

http://www.reuters.com/article/2011/05/07/sony-idUSL3E7G701L20110507

Then an update with more info Here (http://www.reuters.com/article/2011/05/07/sony-idUSL3E7G701T20110507)

* No fixed date for PlayStation Network restart

craigj2k12
08-05-2011, 16:08
hurry up sony :(

im glad iv got an xbox to play on in the meantime

wwe
09-05-2011, 23:17
any news when we going to be back on?

Fitze73
09-05-2011, 23:29
they reckon by the 31st may , but dont hold your breath ive passed out several times already :)

http://www.maxconsole.net/content.php?45876-PSN-return-delayed-by-further-weeks

thank god ive got black ops on the 360 as well

Tezcatlipoca
10-05-2011, 21:03
So, it seems the allegations that was running an outdated Apache server and no firewall are actually a load of rubbish.

http://bitmob.com/articles/detective-work-reveals-psn-servers-up-to-date

Chrysalis
10-05-2011, 22:47
every site linked to from this thread is incredibly slow to load or doesnt load without disabling adblockers.

bitmob.com incidently fails to load anything at all.

1 1 ms <1 ms <1 ms home.gateway2 [192.168.1.1]
2 10 ms 7 ms 7 ms cpc14-leic14-2-0-gw.8-1.cable.virginmedia.com [8
.30.112.1]
3 8 ms 7 ms 8 ms leic-core-1a-ae3-2231.network.virginmedia.net [8
.3.33.45]
4 8 ms 11 ms 11 ms leed-bb-1a-as8-0.network.virginmedia.net [213.10
.172.17]
5 15 ms 14 ms 14 ms popl-bb-1b-as1-0.network.virginmedia.net [62.253
185.238]
6 14 ms 15 ms 16 ms popl-tmr-2-ae5-0.network.virginmedia.net [213.10
.159.6]
7 16 ms 15 ms 15 ms tele-ic-2-as0-0.network.virginmedia.net [62.253.
84.6]
8 * * * Request timed out.

wwe
11-05-2011, 21:13
they reckon by the 31st may , but dont hold your breath ive passed out several times already :)

http://www.maxconsole.net/content.php?45876-PSN-return-delayed-by-further-weeks

thank god ive got black ops on the 360 as well

really 31 of may. why is it taking so long?

LSainsbury
11-05-2011, 21:22
really 31 of may. why is it taking so long?

To make it secure as possible.

Stephen
11-05-2011, 21:40
really 31 of may. why is it taking so long?

It was meant to be the weekend there but I think they spotted a feew issues at the last minute and want to make sure everything is totally 100% before turning it back on.

Hom3r
11-05-2011, 23:16
My XBL friends reckon that this has cost Sony the US market, what with the LG lawsuit and PS3 import ban.

So could be US hackers be behind this because of this?

Chrysalis
12-05-2011, 02:10
So, it seems the allegations that was running an outdated Apache server and no firewall are actually a load of rubbish.

http://bitmob.com/articles/detective-work-reveals-psn-servers-up-to-date

read it now and it turns out that blog is rubbish. sony will have many servers, the fact a single one cached by google was not out of date doesnt mean they all had the same status.

EYEZ
13-05-2011, 05:01
Think what they mean is that ALL Services will be restored by 31st of May.

The PSN will return in stages.

Posted on the 10th http://blog.eu.playstation.com/

:)

Tod
13-05-2011, 10:26
My XBL friends reckon that this has cost Sony the US market, what with the LG lawsuit and PS3 import ban.

So could be US hackers be behind this because of this?

This whole situation must be very damaging to Sony - in the present economic climate you have to ask yourself how a company can stop trading for this amount of time and not put itself into problems.

Stephen
13-05-2011, 10:33
This whole situation must be very damaging to Sony - in the present economic climate you have to ask yourself how a company can stop trading for this amount of time and not put itself into problems.
It won't be that bad for them. Its not like its their only source of income lol. Sony makes lots of many from many different markets.

pabscars
13-05-2011, 10:44
The one thing that's getting on my nerves with Sony is the uncertainty, constantly quoting "in a few days", well it's been a few days since the last blog update so what next,,,, "another few days"

Why they cant just say by a fixed date your online MP with be back online (subject to change) instead of all this carrot dangling nonsense, it gives me the right hump.

Come on Sony get your thumb from out your butt and at least give us multiplayer back.

Tod
13-05-2011, 12:36
The one thing that's getting on my nerves with Sony is the uncertainty, constantly quoting "in a few days", well it's been a few days since the last blog update so what next,,,, "another few days"

Why they cant just say by a fixed date your online MP with be back online (subject to change) instead of all this carrot dangling nonsense, it gives me the right hump.

Come on Sony get your thumb from out your butt and at least give us multiplayer back.

They are in a no win situation. No doubt the hackers are waiting for the date as well.....which is why it will probably just come back without immediate notice.

broadbandking
13-05-2011, 13:07
I am really gutted but I am enjoying some single playing time, Fifa is getting a right bashing.

Ravenheart
13-05-2011, 13:49
Could this be Sony's new self aware PSN server box? ;)

http://www.youtube.com/watch?v=UmQ5LsNMXZ4

Tod
13-05-2011, 14:53
Could this be Sony's new self aware PSN server box? ;)

http://www.youtube.com/watch?v=UmQ5LsNMXZ4

Haha, that will sort those hackers out!

craigj2k12
13-05-2011, 15:50
http://www.escapistmagazine.com/news/view/110008-PSN-Apparently-Back-Online-But-Only-For-Developers

maybe back soon

mrmistoffelees
13-05-2011, 17:14
I neeeeeeeeed KZ3 mp so badly

Chrysalis
13-05-2011, 19:33
They are in a no win situation. No doubt the hackers are waiting for the date as well.....which is why it will probably just come back without immediate notice.

yeah I feel for sony somewhat as they will almost certianly be targeted when it comes back online and if it doesnt hold out it could prove fatal as no company will tolerate constant attacks -> outages as a circle.

Tezcatlipoca
15-05-2011, 04:18
Phased restoration has begun.

PS3 system software version 3.61 is now available, via the PS3 directly or the PlayStation website (http://uk.playstation.com/ps3/support/system-software/detail/item370917/Update-features-%28ver-3-61%29/).

This version will force you to change your PSN password, once PSN is back up.

"PlayStation Network Restoration Begins" (http://uk.playstation.com/home/news/articles/detail/item369506/PlayStation-Network-Restoration-Begins/)


Sony Computer Entertainment introduces increased security measures ahead of PSN service restoration.

Sony Computer Entertainment (SCE) and Sony Network Entertainment International (SNEI, the company) will today begin a phased restoration by region of PlayStation Network and Qriocity services. The phased restoration will be on a country by country basis beginning in the Americas, Europe, Australia, New Zealand and the Middle East.

The first phase of restored services for North America and Europe will include:

Sign-in for PlayStation Network and Qriocity services, including the resetting of passwords.

Restoration of online gameplay across PlayStation 3 and PSP.

Playback rental video content, if within rental period, of PlayStation Store Video Store on PS3, PSP and Media Go.

Q Music Unlimited, for current subscribers, on PS3 and PC.

Access to third party services such as VidZone and MUBI.

'Friends' category on PS3, including Friends List, Chat Functionality, Trophy Comparison, etc.

PlayStation Home.

mrmistoffelees
15-05-2011, 07:14
Update done wonder what time we'll get psn back

Stephen
15-05-2011, 08:50
Update done wonder what time we'll get psn back

Could be anytime between now and the 31st May lol.

In the USA it is being switched on state by state.

Ravenheart
15-05-2011, 08:53
Just done update, wonder what time it will stir from it's slumber.

Stephen
15-05-2011, 08:57
As I said above it's a staggered activation and the update is just to get people ready. It could still be days away.

Mark65
15-05-2011, 15:26
Apparently the US is online and they're preparing the EU servers right now.

"The phased rollout of certain PSN services has begun and we'll tweet when each territory goes back online." From PlayStationEU on Twitter.

Sirius
15-05-2011, 16:27
If the rumours are true that part of the attack on Sony was revenge for them taking GeoHot to task then i bet there are other companies who will think twice before taking Anonymous on. Was it them that opened up the servers at ACS law as well.

SnoopZ
15-05-2011, 19:41
It maybe back up in the UK now for some people.

Ravenheart
15-05-2011, 19:48
After setting a new password seems to be back up now :)

This just gone up on Facebook too

Sony PlayStation
PlayStation Network services have now been restored for the UK, Ireland and the Middle East

mrmistoffelees
15-05-2011, 19:53
Yep I'm in woooooooohooooooooo

broadbandking
15-05-2011, 21:34
COD here I come, I am back online

HeySteve
15-05-2011, 22:45
amazing news, im going home now and firing up black ops

BenMcr
15-05-2011, 22:47
Not for me yet :(

broadbandking
15-05-2011, 22:51
Really Ben, that sucks me and my mate are both back online.

mrmistoffelees
15-05-2011, 22:53
Offline here again now wt??

pabscars
15-05-2011, 23:01
Offline here again now wt??

Me too, just been online with a few buddies on Black Ops and got kicked off, what a bummer :(

fingers crossed it's only temporary




Edit, it's back up again like the proverbial whores drawers

broadbandking
16-05-2011, 08:57
I can see it been alittle rocky for a few days, you think over 70 million users need to do an update.

pabscars
16-05-2011, 09:11
Once it came back on line last night, it stayed up fine with no issues at all.

I'm so glad I've got GT5 back up and running, well done Sony lets keep it that way.

Stephen
16-05-2011, 09:34
I'll update my ps3 at some point. Tbh I've not missed PSN at all as I do most of my gaming on my xbox.

pabscars
16-05-2011, 10:06
I'll update my ps3 at some point. Tbh I've not missed PSN at all as I do most of my gaming on my xbox.

I never used to be a huge fan of the PS3 initially but it's now my preferred console, mostly due to the xbox being full of kids being appendage heads

Tod
16-05-2011, 10:14
For goodness sake, can people really not talk about PS3 without promoting "that other" console!! It's so childish.

I am back on PSN, but the store is not working yet, but I guess that will be last.

BenMcr
16-05-2011, 10:26
Managed to sign in the this morning, so shall just wait for my free stuff now :D

cimt
16-05-2011, 10:59
Do we know what the free stuff is yet?

BenMcr
16-05-2011, 11:01
Nope, apparently have to wait for the Store to come back online first

Nugget
16-05-2011, 12:38
Ran the update last night, but it wouldn't then let me change my password - kept getting a random error :confused:

BenMcr
16-05-2011, 12:44
I had the same, it should now work

pabscars
16-05-2011, 12:47
I thinks it's just the shear number of users all doing the same, read this snip-it from the EU PSN Blog





Posted: 15 May 2011 04:07 PM PDT

Some of you have mentioned that you have not received your password reset emails. With the huge number of people coming back online at the same time and resetting their passwords, it is creating significant email traffic to ISPs. The consequence is that some of the ISPs are throttling the emails.

We are currently trying to resolve this, but in the meantime please be patient and refrain from submitting multiple requests. You will receive you reset email and be able to get back to enjoying your online gaming.

Update:
We’re currently experiencing an extremely heavy load of password resets, so we recently had to turn off services for approximately 30 minutes to clear the queue.

If you’ve requested your password reset, please give it a bit of time to reach your email.

Tod
16-05-2011, 12:51
I think it's a beautiful moment seeing all those delighted little Sackboys and Sackgirls back online playing happily together! :D

Stephen
16-05-2011, 13:07
For goodness sake, can people really not talk about PS3 without promoting "that other" console!! It's so childish.

I am back on PSN, but the store is not working yet, but I guess that will be last.
Who was promoting??:rolleyes:

I was just giving my opinion, which I am perfectly entitled to do. I just stated I haven't been too bothered as I didn't use the PSN much anyway.

Also the store will be activated later. As mentioned in the blog its a staggered restart. Gaming would be activated first and the store last.

Nugget
16-05-2011, 19:43
Ran the update last night, but it wouldn't then let me change my password - kept getting a random error :confused:

I had the same, it should now work

I thinks it's just the shear number of users all doing the same, read this snip-it from the EU PSN Blog

Panic over - tried it when I got home, and password is reset (although I've already forgotten what it is...)

Hom3r
16-05-2011, 19:58
I'm waiting for it to crash with the 77,000,000 or so users.

craigj2k12
16-05-2011, 20:25
it went down last night because they had to turn it off to alleviate the amount of people changing there password at once

ps3 is my preferred choice, sounds quality it better, and it outputs true surround, whereas the xbox does its own thing and sounds like 2.1. the ps3 has a far better design and the controller is the main thing that wins me over

---------- Post added at 19:25 ---------- Previous post was at 19:24 ----------

Do we know what the free stuff is yet?

i wanted to know that, i though everyone was getting a months free trial of plus, it would now seem that we are just going to get 4 free downloads :S

Tezcatlipoca
16-05-2011, 21:14
I just hope the free stuff isn't just a few crap games like Haze...

Tod
16-05-2011, 22:50
i wanted to know that, i though everyone was getting a months free trial of plus, it would now seem that we are just going to get 4 free downloads :S

You will get 2 free PS3 games, out of a choice of 5 titles, and/or 2 free PSP titles from a choice of 4 games (so 4 if you have both I guess)

You will also get a free month on PS+ (or 2 months if you are already a PS+ user)

I just hope the free stuff isn't just a few crap games like Haze...

This was apparently posted on the UK blog which has since been taken down (so treat as a rumour - although looks viable!):


First up you can choose two of the following PS3 titles:

LittleBigPlanet
Infamous
Wipeout HD/Fury
Ratchet and Clank: Quest for Booty
Dead Nation

And PSP owners can choose two of the following:

LittleBigPlanet PSP
ModNation PSP
Pursuit Force
Killzone Liberation


ps3 is my preferred choice, sounds quality it better, and it outputs true surround, whereas the xbox does its own thing and sounds like 2.1. the ps3 has a far better design and the controller is the main thing that wins me over

Yes all very true. The PS3 is the system of choice for adults not kiddies. It is a serious piece of kit with premium hardware like the blu-ray disc player - not just for games. How anyone could be serious about giving up the PS3 when PSN was offline I don't know - you don't buy a PS3 JUST for games (even though it has the best titles!)

Stephen
16-05-2011, 23:17
Yes all very true. The PS3 is the system of choice for adults not kiddies. It is a serious piece of kit with premium hardware like the blu-ray disc player - not just for games. How anyone could be serious about giving up the PS3 when PSN was offline I don't know - you don't buy a PS3 JUST for games (even though it has the best titles!)

I'm sorry but you berate me for mentioning the xbox in the thread then you go and do exactly the same thing:rolleyes: but it a totally fanboyish way.

Most of the people I know over the age of 28 own an xbox as they prefer the online gaming aspect. There is nothing kiddie about them.

Quiet of a few of them also own the ps3 and like me use it mostly for Blu Ray movies as the 360 provides a better gaming experience for them. Also a better choice of games of late as the PS3 exclusives have been few and far between.

Still not powered up my PS3 to update the system yet. Had it on yesterday to watch a 3d blu ray but that was all.

SnoopZ
16-05-2011, 23:43
I'm sorry but you berate me for mentioning the xbox in the thread then you go and do exactly the same thing:rolleyes: but it a totally fanboyish way.

Most of the people I know over the age of 28 own an xbox as they prefer the online gaming aspect. There is nothing kiddie about them.

Quiet of a few of them also own the ps3 and like me use it mostly for Blu Ray movies as the 360 provides a better gaming experience for them. Also a better choice of games of late as the PS3 exclusives have been few and far between.

Still not powered up my PS3 to update the system yet. Had it on yesterday to watch a 3d blu ray but that was all.

I couldn't agree more with your comments Stephen.

Tod
16-05-2011, 23:49
Annoying isn't it.

Anyhow...moving on....those games I mentioned are now officially confirmed:

http://blog.eu.playstation.com/2011/05/16/details-of-the-welcome-back-programme-for-scee-users-2/

cimt
17-05-2011, 00:04
You only get to keep those games as long as you keep PS+. You can always expect a company to turn a negative into a way to earn profit.

dilli-theclaw
17-05-2011, 00:10
You only get to keep those games as long as you keep PS+. You can always expect a company to turn a negative into a way to earn profit.
Really? I don't think I'll bother then.

Stephen
17-05-2011, 00:13
You only get to keep those games as long as you keep PS+. You can always expect a company to turn a negative into a way to earn profit.

Not true. The free games are yours to keep, it's only the actual PS+ stuff and features that you loose access to after the 30 day trial. If you read down the comments there are posts from the moderator explaining that.

The free games are yours to keep. It is only some of the content you get through PS Plus that will expire at the end of the month.


List of games All existing PlayStation Network members will be able to access the following from PlayStation Store*:
Two PS3 games from the following list:
LittleBigPlanet
Infamous*
Wipeout HD/Fury
Ratchet and Clank: Quest for Booty
Dead Nation*

For those with PSP accounts, you will also be eligible to download two PSP games from the following list:
LittleBigPlanet PSP
ModNation PSP
Pursuit Force
Killzone Liberation*
- 30 days free PlayStation Plus membership for non PS Plus subscribers*
- Existing PlayStation Plus subscribers will be given 60 days free subscription.

I think I will get Infamous and Wipeout HD

Tod
17-05-2011, 00:17
The free games they are talking about are the 2 freebies you choose from the selection of 5. Additional to them you will get PSN+ free games, but they do expire after your 30 days run out. You will however keep other free content (wallpapers, avatars) and you will keep any games you have brought with PSN+ discount.

I think it is right they are trying to take a positive spin out of giving out PSN+ - but you have to remember they are not able to charge ANYONE while they are giving this out free, and I would guess this IS costing them in lost earnings for not only the downtime, but for the free month when they can not charge for the service at all.

cimt
17-05-2011, 00:18
Musta read it wrong then since you're also getting a month of PS+.

BenMcr
17-05-2011, 00:19
I think I will get Infamous and Wipeout HDWas thinking the same. Had been tempted to buy Wipeout HD before this all happened as it's 3D compatible ;)

Stephen
17-05-2011, 00:31
Was thinking the same. Had been tempted to buy Wipeout HD before this all happened as it's 3D compatible ;)

That's what made me think of getting it :)

Tod
17-05-2011, 00:37
My choice will be:
Ratchet and Clank: Quest for Booty
Dead Nation*

And for my PSP:

LittleBigPlanet PSP
ModNation PSP

Am pretty happy with this, as they are all games I was fairly keen on getting hold of.

What with that and a month free Qriocity and 2 months free PSN+ I am actually saving money from all this - result! :)

Tezcatlipoca
17-05-2011, 02:26
I already have LBP & Wipeout. I'll definitely go for Infamous. Not sure what though for my second.

Tod
17-05-2011, 10:03
Infamous is actuarily quote tempting.....I'm not sure now! I too have Wipeout and LBP. I played beta of Dead Nation and it was fantastic, so I have to have that :)

So..Infamous or Ratchet and Clank?...hmmmmm

Nugget
17-05-2011, 10:30
InFamous is a definite for me - came this close to buying it when it was released, so that's worked out well :D

Other than that, I think it's a toss-up between Dead Nation and Wipeout - haven't played any Wipeout in about 10 years, so may be worth revisiting

craigj2k12
17-05-2011, 17:08
i compare thee xbox to an iPod (or iphone, take your choice)

its a popular console (..or phone) but there are alternatives that are a lot better, IMO people only get xboxes because they are more popular. I was ps3 only until about 2 or 3 months ago when i got my xbox, because more of my mates were playing xbox, and there was only 3 or 4 who played regularly on ps3

in terms of the console itself, the ps3 is far better, but the xbox has more people on it (for some unknown reason) so makes the online side of it better

Stephen
17-05-2011, 17:52
i compare thee xbox to an iPod (or iphone, take your choice)

its a popular console (..or phone) but there are alternatives that are a lot better, IMO people only get xboxes because they are more popular. I was ps3 only until about 2 or 3 months ago when i got my xbox, because more of my mates were playing xbox, and there was only 3 or 4 who played regularly on ps3

in terms of the console itself, the ps3 is far better, but the xbox has more people on it (for some unknown reason) so makes the online side of it better
My final word on this as the thread is going off topic a bit is that a lot of games makers that make multi format games are able to make them better on the 360 and many graphical features are left off of the PS3 version. So it might have more raw power but the PS3 is apparently not as good at doing some fancy graphical effects or its just not as easy to program.

History would say that the PS3 should be the popular one after the sucess of the PS1 and PS2. The 360 is popluar because it is a fantastic console over all.

I was looking at some reviews of Dead Nation and it does look pretty cool.

craigj2k12
17-05-2011, 19:14
i think your talking about black ops stephen, i have the game for both consoles, and its dier on ps3 but average on xbox. i still think the game itself is worse than the superhub, but that is my opinion :D

on black ops, the xbox does have more features, especially on zombies, i think the reasoning behind it is that they want to port it from xbox to ps3, not rewrite the game in blu ray

either way, does anyone have a date for the playstation store to come back on? i presume when it does, we will get our free stuff :D

Stephen
17-05-2011, 20:21
It could be another few days or maybe longer.

No not COD it was Ghostbusters and a few other games. Missing a lot of graphical elements and featuring poor quality textures compared to the 360.

Tezcatlipoca
17-05-2011, 20:25
Can people please stick to the topic... This is not a 360 vs. PS3 thread, it is a thread about the PSN breach and related issues. If anyone still wants to debate the merits of one console over another, fine, but start a dedicated thread for it.

Keep this one to the PSN situation...


Anyway, as for the Store... I haven't seen any date other than "by the end of May".

This went up today, btw, about the Identity Protection Sony is offering:

http://uk.playstation.com/home/news/articles/detail/item373656/PSN-Identity-Protection-Programme-detailed/

Tezcatlipoca
18-05-2011, 00:02
Off topic post deleted. This is not a 360 vs. PS3 thread. This thread is about the PSN data breach & downtime etc. Any more and I'll do more than just delete the odd post.

Tod
18-05-2011, 10:07
Great, no more mentions of the usage of that other console then!

Things are far from working smoothly on PSN. I was in home yesterday and it was jittering through some worlds really badly, and Qriocity takes 30 minutes to start up on PS3!!

pabscars
18-05-2011, 14:39
Has anyone had any issues with Black Op's on the PS3 since the restoration of PSN, more specifically NAT issues.

I noticed last night me and a few mates couldn't join each other, despite both me and my buddies in game NAT status saying open.

I've forwarded all port's that I'm aware of but I can only assume this SKy sagem Ph2 router isnt working correctly (or PSN is playing up).

Re-enabling UPnP works fine but it then says my NAT is moderate (but then lets me join no probs), the funny thing is, I never appeared to have an issue before the PSN outage.

Answers on a postcard if you please chaps and chapesses :)


I appreciate this does sound more like a router issue but thought it warranted an ask in this thread before I start another.

SnoopZ
18-05-2011, 16:32
Looks like Sony have a few more problems to deal with! This time it is to do with an exploit with Playstation Network password reset.

http://www.neowin.net/news/sony-confirms-exploit-with-playstation-network-website-password-reset