PSN down for a week. Private Info Stolen. Panic.

[ThatNickGuy]

http://www.escapistmagazine.com/new...ts-Private-PSN-Info-Has-Been-Stolen-All-Of-It

"Although we are still investigating the details of this incident, we believe that an unauthorized person has obtained the following information that you provided: name, address (city, state, zip), country, email address, birthdate, PlayStation Network/Qriocity password and login, and handle/PSN online ID," Sony's Patrick Seybold wrote in a message being sent to all registered PSN account holders. "It is also possible that your profile data, including purchase history and billing address (city, state, zip), and your PlayStation Network/Qriocity password security answers may have been obtained."

"If you have authorized a sub-account for your dependent, the same data with respect to your dependent may have been obtained. While there is no evidence at this time that credit card data was taken, we cannot rule out the possibility," he continued. "If you have provided your credit card data through PlayStation Network or Qriocity, out of an abundance of caution we are advising you that your credit card number (excluding security code) and expiration date may have been obtained."

So yeah, to say that I'm getting a bit worried would be an understatement. Watching my credit card transactions like a hawk. Going to speak with my Mastercard provider tomorrow.

 

[Jiarn]

Never bought anything on PSN. Glad I didn't now.

 

[linglingface]

Holy cow. Glad I don't have a Playstation. Hope all your info is safe!

 

[Hylian]

I am going to have to be watching my bank account statements very closely after this. Luckily my bank does offer protection for me if somehow my info does get stolen but since it is my debit card info the money would be taken directly from my bank account which could be dreadful.

 

[Overflight]

http://vgn365.com/2011/04/26/psn-users-reporting-hundred-of-dollars-stolen-from-them/

...Ok, NOW it's panic time. Everyone either cancel your cards or watch your transactions VERY often.

Even though my card is chargeable (i.e. you transfer money into the card which you then make payments with and if a payment is made when there is not enough balance in the card, said payment isn't authorized) I still canceled it just to be on the safe side (some places like iTunes don't charge your card until a few days after the fact so someone could get lucky enough to make a small charge and it being discounted sometime after I charged the card). Plus, my card would expire in 3 months so I just paid the renewal charge a little early. Guess I lucked out.

 

[Frank]

One email to one website is hardly a reason to panic.

 

[Espy]

It's not really time to panic when one guy emails a website and says he had money taken from him.

It is however past time to cancel and get a new card. I'm not that worried but I figure it's better to be safe than sorry.

 

[Overflight]

^
Added at: 15:33

It's not really time to panic when one guy emails a website and says he had money taken from him.

It is however past time to cancel and get a new card. I'm not that worried but I figure it's better to be safe than sorry.

 

[Jay]

Can't believe they failed so hard on this.

I was contemplating just like week to buy the DLC for Red Dead Redemption but opted to save the money and buy Valkryrie Profile off ebay instead.

 

[Gared]

This was a pretty epic failure on Sony's part, and I find it vaguely amusing that it happened around the same time that Amazon's EC2 service crashed and burned for 3 or 4 days. Has anyone gotten any update from Amazon about what happened (aside from their press release that it wasn't related to SkyNet), and whether the two may have been somehow related?

 

[Overflight]

Well, I guess we now know what it takes to get THIS Scott to update. :-P

 

[figmentPez]

Not surprisingly there is now a class action lawsuit.

 

[ThatNickGuy]

Wow, it was such an epic fail that it prompted VG Cats to update?

These are the end times.

 

[Hailey Knight]

Not surprisingly there is now a class action lawsuit.

A lot of people would be in on that.

 

[Chibibar]

What sucks (that we recently discover) that we can't play the games we purchase and downloaded from PSN (Parasite Eve and Puzzle fighter) because PSN is down I thought it was like Steam where you can download it, verify and can play off line. nooooooo.. it won't work for me.

I check my one CC that I attach to my account, but I'm glad that most of the time I use game cards

 

[Frank]

What? I was playing Castlevania SOTN the other day. I'm not having that issue.

 

[Covar]

This was a pretty epic failure on Sony's part, and I find it vaguely amusing that it happened around the same time that Amazon's EC2 service crashed and burned for 3 or 4 days. Has anyone gotten any update from Amazon about what happened (aside from their press release that it wasn't related to SkyNet), and whether the two may have been somehow related?

They were not. Amazon had some issues with one of their Data Centers (Virginia I believe) after lightning hit some of it's power equipment. That only really affected people and sites that were only using the one location, and didn't have a thorough backup plan.

 

[Gared]

They were not. Amazon had some issues with one of their Data Centers (Virginia I believe) after lightning hit some of it's power equipment. That only really affected people and sites that were only using the one location, and didn't have a thorough backup plan.

Yeah, a well placed lightning strike will do that to you every time.

 

[Hailey Knight]

What? I was playing Castlevania SOTN the other day. I'm not having that issue.

Yeah, what Chibi's saying doesn't make sense to me. Once the game's installed, you shouldn't need to be signed in.

 

[Chibibar]

Yeah, what Chibi's saying doesn't make sense to me. Once the game's installed, you shouldn't need to be signed in.

I will double check with my wife again (she is the one complaining) so I take it as what she told me.

 

[Hailey Knight]

It says PSN log-in names and passwords have likely been obtained... but you can't change those until the site works again. A lot of people use the same password for different things.

Hrm.

 

[Chibibar]

http://www.bbc.co.uk/news/technology-13231307
CC number are encrypted (that can mean anything really) but at least it is not clear text like our other info

 

[SpecialKO]

It says PSN log-in names and passwords have likely been obtained... but you can't change those until the site works again. A lot of people use the same password for different things.

Hrm.

Change your password pneumonics (or w/e you do to make more), and get a password vault to keep track of them.

 

[Hailey Knight]

Change your password pneumonics (or w/e you do to make more), and get a password vault to keep track of them.

I have a number of passwords. My problem is, I don't remember which one I used for PSN, so I have to change a few just in the off-chance that they might have shared that one.

And what if password vault gets hacked? I can only trust my own head.

 

[SpecialKO]

I have a number of passwords. My problem is, I don't remember which one I used for PSN, so I have to change a few just in the off-chance that they might have shared that one.

And if you knew which used what password, you would know exactly which ones would need to change.

And what if password vault gets hacked? I can only trust my own head.

There's no way to be 100% secure (besides choosing not to play). It's impossible. That said, if you can remember all your passwords and where they're used, then you don't need a password vault.

Also, if you don't use an online vault (which I wouldn't for that very security reason), then someone would have to hack your home machine to then hack your encrypted vault. If they get that far, you're pretty screwed no matter what. That's burning all your credit cards, freezing your bank accounts, and changing all your email addresses territory.

 

[David]

I have a pattern to my passwords. They all follow the same structure, with the letters and numbers different based on the name of the website or service they're being used on (eg Yahoo is a 5-character word and the second letter is A, so the password for Yahoo contains a 5 and an A). That way each website has a different password and I can remember each of them.

 

[Far]

When gawker got hit awhile back I went and changed all of my passwords that were important since I had, stupidly, been using the same for just about everything. I don't think I got around to changing my psn pass though, honestly I forgot you even have one as it auto logs you in when you start the system. So all I should have to do is change that once the network pops back up and I should be ok. I consistently monitor my credit card and banking info anway so it's not been that different. No funky charges so far but I'm still watching it.

 

[@Li3n]

Also, if you don't use an online vault (which I wouldn't for that very security reason), then someone would have to hack your home machine to then hack your encrypted vault. If they get that far, you're pretty screwed no matter what. That's burning all your credit cards, freezing your bank accounts, and changing all your email addresses territory.

If they got to your home machine a keylogger is a way easier method to get your passwords anyway.

 

[Chibibar]

Yeah, what Chibi's saying doesn't make sense to me. Once the game's installed, you shouldn't need to be signed in.

I double check my wife and she was hitting the 'wrong' key while trying to launch the game. It is working. Yeesh.

 

[Dave]

http://www.guardian.co.uk/technology/blog/2011/apr/29/playstation-network-hackers-credit-cards

Check your credit cards. Better yet, report them as stolen and get a new one. The fraud has begun.

 

[SpecialKO]

Can't think of a better example of why you should just buy points/time cards for PSN/XBL on Amazon or at Target or something.

 

[@Li3n]

Well you can always use the option of not having the system remember the info (and they really should enforce it better, as i hear some places keep them for a few months even if you said no).

 

[SpecialKO]

That might work if you buy it through the Web instead of the PS3/360 interface.

 

[Gared]

King5 News out of Seattle is now reporting that Sony just had to shut off access to DCUO and other games from Sony Online Entertainment yesterday morning due to the discovery that back on 4/16 - 4/17 (before the PSN hack) hackers breached an additional 24.6M accounts and stole credit card info from 23.4k+ users on that network. So, so glad I decided not to buy DCUO when the critics panned it right after release.

 

[Jiarn]

Um, your comment made no sense. What does the hacking of the SoE network have anything at all to do with the quality of the game?