Sony denies PSN hack, confirms PSN Web exploit

Sony says its PSN web page wasn't hacked, but admits it was (almost) exploited.

Matt Peckham (PC World (US online))
19 May, 2011 23:46
Comments

The PlayStation Network wasn't hacked so much as threatened yesterday when a password exploit accessible through its PSN web page login page came to light, claims Sony.

Sony spokesperson Patrick Seybold confirmed the exploit in an official PlayStation blog dispatch yesterday afternoon.

"We temporarily took down the PSN and Qriocity password reset page," wrote Seybold, quickly adding "Contrary to some reports, there was no hack involved."

The "exploit" involved the PSN web-based password reset page, where whistleblower Nyleveia claimed anyone could change someone else's password using their PSN account email and date of birth--both details possibly (though not confirmedly) obtained by hackers in the original mid-April PSN breach.

Seybold seemed to confirm this as well: "In the process of resetting of passwords there was a URL exploit that we have subsequently fixed."

"Consumers who haven't reset their passwords for PSN are still encouraged to do so directly on their PS3," said Seybold. "Otherwise, they can continue to do so via the website as soon as we bring that site back up."

The login page was still down Thursday morning.

A hack is technically defined as "use [of] a computer to gain unauthorized access to data in a system," where an exploit isn't formally defined in computer terms, but means to "make full use of and derive benefit from (a resource)." It's splitting hairs to call the PSN password reset issue one or the other, but as I noted yesterday, "hacking" usually involves breaking into something, where "exploiting" involves taking advantage of some preexisting deficiency to gain some advantage from a broken or vulnerable process (as opposed to flat out breaking into a system).

So yes, Sony was hacked. Or exploited. Or both, depending on your stance. All that matters to PlayStation gamers, I'm betting, is that the vulnerability was patched quickly: if we go with Nyleveia's version of events, within 15 minutes of notification. That's not such a bad thing as reaction times go, and it's also important to bear in mind Sony's under unprecedented scrutiny levels, so any little slip that might otherwise receive passing notice ends up hyper-magnified.

Interact with Game On: Twitter - Facebook - Get in touch

Nominations for the 2012 ARN IT Industry Awards open on Tuesday, June 12.

Bookmark this page
Share this article
- facebook
- slashdot
- digg
- Reddit
- stumbleupon
- linkedin
- twitter
Got more on this story? Email ARN
Follow ARN on twitter

More about: etwork, Facebook, Seybold, Sony, Xbox

References show all

Comments

Post new comment

Share
Share this article
- google+
- facebook facebook
- slashdot slashdot
- digg digg
- Reddit Reddit
- stumbleupon stumbleupon
- linkedin linkedin
- twitter twitter
print
email
Bookmark

Related Coverage

Related Whitepapers

Latest Stories

Community Comments

"Should I REFINANCE a construction loan to a permanent loan OR convert ..."

World’s eyes on Aussie NBN: Conroy
"It's an remarkable paragraph in support of all the online visitors; they ..."

iPhone 5 rumour rollup for the week ending May 27
"I would not recommend Aranez iPad case or the manufacturer. I purchased ..."

PRODUCTS: Aranez announces K-Leather iPad 2 case
"Slt peut tu expliquer comment intaller ou mettre en place le mteur ..."

Italian mathematician prepares to challenge Google
""Amsellem said Facebook, flush with cash from its recent IPO, could purchase ..."

Facebook could buy Nokia to build 'FacePhone', expert claims

Tags: games, gaming, hackers, Playstation, sony

ARN Directory | Distributors relevant to this article

ACA Pacific , Alloys , Anixter , Aquion , ASI Solutions , Bluechip Infotech , Compucon Computers , Dicker Data , Leader Computers , Multimedia Technology , Xpress I.T. , Dynamic Supplies

Most Read

Get exclusive access to ARN's news, research and invitation only events.

Latest Jobs

CCSAP FICO ConsultantNT
FTSAP Basis ConsultantACT
FTSales Account ManagerNSW
FTChange Management ProfessionalsNSW
FTQM Trainer and ConsultantNSW
FTSales Account ManagerNSW
CCOBIEE ConsultantWA
FTSAP Basis ConsultantNSW
FTIT Account Manager - System Integrator - Career Progression - Start ImmediatelyNSW
CCSAP PM ConsultantNSW
CCAPAC Campaign ManagerNSW

Most Commented

ARN Distributor Directory

Find distributors by name | vendor | location

Channel Deals

ACA Pacific

ABBYY FineReader 11 - Intelligent OCR software for document conversion.

More details »

ARN Vendor Directory

Find vendors by name | category

iAsset is a channel management ecosystem that automates all major aspects of the entire sales,marketing and service process, including data tracking, integrated learning, knowledge management and product lifecycle management.

Featured Resources

In Search of the Long-Term Archiving Solution —Tape Delivers Significant TCO Advantage over Disk

How to reasonably and in the most cost-effective way, preserve valuable digital data for a long time – and how to prepare for the ensuing decades of continuing data growth, technology change, and increasing long-term preservation requirements.

Most Popular Resource Papers

Market Potential-Strategy Guide to the Active Archive Market

The active archive market is a growing segment where tape is seen as part of a disk or network fileystem. This means that to an end user disk and tape are “blended” and whether file is held on disk or tape is “invisible” to the end user. The active archive market is the fastest growing space in the storage industry and allows direct end user access to tape through a file system front end.

Popular tags: Business Management, Security, Data Centre, Storage, Master Data Management