Sony Troubles Extend To PC Services?

By Jim Rossignol on May 2nd, 2011 at 9:40 pm.


UPDATE: Here’s the news from Sony.

“Customers outside the United States should be advised that we further discovered evidence that information from an outdated database from 2007 containing approximately 12,700 non-US customer credit or debit card numbers and expiration dates (but not credit card security codes) and about 10,700 direct debit records listing bank account numbers of certain customers in Germany, Austria, Netherlands and Spain may have also been obtained. We will be notifying each of those customers promptly.”

Oh dear. The sites for Everquest 2, Planetside, and a bunch of other games are now all defaulting to a “maintenance” screen. The message reads: “We have had to take the SOE service down temporarily. In the course of our investigation into the intrusion into our systems we have discovered an issue that warrants enough concern for us to take the service down effective immediately. We will provide an update later today (Monday).”

This is probably just Sony being thorough after last weeks debacle, but it’s nevertheless going to be causing a few frustrations this evening.

, , .

90 Comments »

Sponsored links by Taboola
  1. Nighthood says:

    Boy am I glad I’m not a Sony customer.

  2. Lewie Procter says:

    Boy do I wish I wasn’t a Sony customer.

    • Flameberge says:

      Boy, this.

    • Premium User Badge

      James G says:

      Boy, you can say that again. The Gawker hack made me change most my passwords, this made me change the rest of them. Fairly sure I didn’t have a card linked to my PSN account, but not sure enough that I can kick back and relax. Then there is the whole identity theft risk, only made more stupid by the fact it is ridiculously easy to commit identity theft.

    • Bhazor says:

      The only Sony product I have is an MP3 Walkman. I’m pretty sure it doesn’t have my bank account details in it.

      I’m pretty sure.

    • rayne117 says:

      Bhazor: you had better be sure. Else you’ll have to call the boys in blue to find the thief.

  3. Teddy Leach says:

    Boy, I do wish they’d actually adequately protected everyone’s data.

    • Premium User Badge

      Diziet Sma says:

      At least the passwords were hashed and not clear text as misreported in so many other places.

    • jalf says:

      Hashed, but without a salt, making it more or less pointless.
      Even Sony is assuming that they have managed to get access to the passwords at the very least. Right now the interesting part is the CC info (which was encrypted, but that may have been broken, one way or the other)

    • Snak says:

      Boy, i second that :/

  4. Dawngreeter says:

    Boy, you turn me
    Inside out
    And round and round

  5. spindaden says:

    [Edit] I mean…
    Boy, … does this actually stop people playing? or is it just the website and account stuff that’s offline?

    • spindaden says:

      According to some EQ fan site it does mean all their games are offline too :O

    • Premium User Badge

      stahlwerk says:

      So this may be a ploy to (not so gently) nudge the star wars galaxies players towards the old republic? Cui bono, cui bono indeed…

      *dons tinfoil*

    • Zogtee says:

      Stahlwerk wrote:
      “So this may be a ploy to (not so gently) nudge the star wars galaxies players towards the old republic? Cui bono, cui bono indeed…”

      That would be a fine conspiracy theory indeed, assuming there actually were any Star Wars Galaxies players.

  6. wazups2x says:

    Boy, oh boy.

  7. Kaira- says:

    Boy, I wonder what went through their minds. “Boy, let’s not use encryption, gigabytes are way too expensive these days”.

    • Pantsman says:

      Boy, encryption saves you gigabytes.

      Just sayin’.

    • BAReFOOt says:

      No it doesn’t.
      Just knowin’.

    • geldonyetich says:

      Maybe if you had some kind of hybrid encryption/compression scheme, but that likely wouldn’t be as secure as a scheme that dedicated more bytes to being misleading.

    • Premium User Badge

      Daiv says:

      Someone is hacking our internet, our intranet, and our protocols! We need more megabytes! No – GIGABYTES! Somebody get me the Pentagon. This much hacked computing power might allow hackers to break through into the real world!

    • Thants says:

      They could hack the planet, you’re saying?

    • Premium User Badge

      VelvetFistIronGlove says:

      geldonyetich: Maybe if you had some kind of hybrid encryption/compression scheme, but that likely wouldn’t be as secure as a scheme that dedicated more bytes to being misleading.

      Incorrect. Compressing plaintext before encrypting it does not diminish the security of the encryption. But you have to compress first to get any space savings—the output of a good encryption algorithm will be incompressible. Some encryption systems, for example PGP/GPG always compress the data before encrypting it in order to save bandwidth.

  8. Premium User Badge

    Man Raised by Puffins says:

    Buoy, a floating device that can have many different purposes.

  9. Rii says:

    It just occurs to me that the ‘All Your Base’ meme would be perfect for this fiasco if it hadn’t burnt out years ago.

    “What happen??”

  10. crusader8463 says:

    Girl, this is crazy!

  11. Kismet says:

    Next target: Sony DADC SecuROM servers?
    (no credit cards but you can always hold software hostage and ask a ransom)

  12. dethtoll says:

    Boy, what a shame.

  13. Gassalasca says:

    He was a boy she was a girl
    can I make it anymore obvious?

  14. Cooper says:

    I’m not a boy, not yet a woman

  15. Premium User Badge

    Lambchops says:

    Boi, I’m glad I don’t spell like Avril Lavigne.

  16. Urthman says:

    These are still dominoes falling as a result of Sony turning off Linux on the PS3, isn’t it?

    Has a company ever before been so badly burned from one decision to screw a handful of their customers?

    • Pointless Puppies says:

      Yes, because the ONLY reason why Sony took out OtherOS was to screw a handful of consumers. But of course.

    • Ricc says:

      The data of millions of PSN users is worth a whole lot of money. This didn’t happen because of a few guys’ sense of entitlement. It happened because there was a vulnerability and they managed to profit off it.

    • Tei says:

      We don’t really know anything. Maybe this is organized by crackers motivated by profit, and not anything political.

      Anyway.. It was the dirty tactics against GeoHot the most infuriating thing. … What Sony did was “political persecution” against this dude, and everyone on this class. Touching a sensible nerve, and a important one. The right to modify things is about the most important thing that motivate hackers of any type. Even if theres any hacker in the world NOT motivated by the idea of modifying things, the tactics that Sony used to make GeoHot looks bad are enough to make angry any Human Being.

      How is this important for some people? about has much as religion for most normal people. I know I added Sony in my KOS list for this.

      Personally, I think the best idea is to avoid buying a PS3, if you want to install Linux. But I support the people that would want to modify PS3 to install anything on it (even windows). If you attack any hacker doing this, you attack all of us.

    • patstew says:

      Another possible motivation for this hack is that Sony gave 1/3rd of the staff at Sony online a P45 one month before all these hacks happened, ie the hacks were at roughly the same time as those people were leaving….

    • Urthman says:

      I didn’t mean the motivation for this attack was revenge for turning off Linux support. I meant that the attack was made possible by the security holes cracked open by the Linux hackers reclaiming the functionality they’d paid for when they bought their PS3 units.

    • jalf says:

      Maybe, maybe not. As far as I know, there’s no evidence that the hack was originated from a PS3, or used information uncovered in the PS3 hack.

  17. MythArcana says:

    Yet more reasons to stay away from consoles…like I need another one.

  18. Premium User Badge

    stahlwerk says:

    Boy we can do much more together
    Better get a life get a life get a life get a life

    • liance says:

      (It’s not so impossible.)
      (I browsed the entire comments thread if just to see I wasn’t the only person with that ridiculous song stuck in my head.)

    • Premium User Badge

      stahlwerk says:

      Ridiculous? Nay, majestic!
      (looking forward to seeing Sufjan live on Friday, yay!)

  19. Moraven says:

    Ars reports SOE was hacked and personal info, along with old CC data was taken.

  20. Unaco says:

    I’m going to hazard a guess and say that the security of the entirety of Sony’s Online presence was handled by the actors from NCIS.

  21. Tei says:

    Old men

  22. doublezerogames says:

    Hello friends!
    I want to invite you all to play with me at DoubleZero Games @ http://www.doublezerogames.com

    If you want to join me in this great game, or you want to join one of the other games that DoubleZero Games has,
    please click on the following links:
    Main Site: http://doublezerogames.com
    Forums: http://doublezerogames.com/forum/index.php

    • rayne117 says:

      Lookie there; that is one of them dirty, rotting, lazy spams! Let’s get ‘em boys!

    • JackShandy says:

      You can’t win. You know that, don’t you? It doesn’t matter if you whip us, you’ll still be where you were before, at the bottom. And we’ll still be the lucky ones at the top with all the breaks. It doesn’t matter. Readers will still be Readers and Spams will still be Spams. It doesn’t matter.

  23. Premium User Badge

    tomeoftom says:

    Right, boy.

    -Fred Wester, CEO of Paradox

  24. Dominic White says:

    Well, so much for it being just a precaution:

    http://www.gamespot.com/news/6311008.html

    Another ~25 million sets of personal details stolen, including credit card details. Ffffffuuuuuu—–

  25. Premium User Badge

    Jp1138 says:

    Well, it seems this guys may have got my old credit card details among other things, being Spanish and one the two guys that played Galaxies some years ago… the card expired and I no longer play Galaxies, but it doesn´t make me feel better…

  26. patricij says:

    Boyo, would you kindly UNhack the PSN network? *fixed*

  27. Cheese says:

    GIRL! AHA!

    Boy, am I glad I didn’t subscribe to planetside all those years ago.

  28. The Pink Ninja says:

    But but but Planetside 2! :(

  29. GameOverMan says:

    Boy, you’re an alien. Your touch so foreign.

  30. sneetch says:

    Boy, am I glad they had to courtesy to email me to let me know the haxxors have my details… oh wait, they still haven’t.

    I mean, I obviously know but how many others are oblivious? HOW MANY!?!?!!!1

    • skurmedel says:

      They sent me an email of “regret”, like three days after the news broke. Which I guess is more than a week after PSN got rubbished.

      We thank you for your patience as we complete our investigation of this incident, and we regret any inconvenience.

      [snip]

      Providing quality and secure entertainment services to our customers is our utmost priority.

    • Hematite says:

      I got a form letter too – strange, pretty sure I never gave them my CC number although I may have made a free account for some reason.

      More worryingly, my gender is among the items that may have been stolen. ulp.

  31. lunarplasma says:

    Boy, do I hope that they’re sure that it’s only an outdated credit card database that was haxx0rz’d.

  32. dogsolitude_uk says:

    Man, am I glad I spent that £300 on stuff for the house, a drill and a toolkit rather than a PS3.

    Gonna make me some holes in the wall. Yep, just a lazy, hole-drilling afternoon…

  33. Myros says:

    Boy – cot Sony.

  34. Tei says:

    Champ, this rocks bands!

  35. pipman3000 says:

    alright which one of you did it.