Is PSN under attack? - PSN now back up 15/05

oldbag said:
Hang on, surely if you are a company and part of your business is to handle personal information and credit card data, you have to comply with certain standards (encryption and how to access the encrypted data), especially when it's accessed over the Internet (from PS3 to Server, plus credit-card payments going from PS3 to Server)? I can't imagine you'd be allowed to store plain text credit-card numbers in a database??
Click to expand...

afaik there is no such legislation forcing you to use encryption

Just common sense on the company's part.
 
Sydney said:
I like how you pluck the numbers out of biased nothing.
What exactly is overclocking tell me? Is that not hardware hacking?
Click to expand...

Hey - what does 'I'm guessing' mean? There's no bias on my part.

And - this, unless I'm mistaken, is the console forum? Supposedly closed systems.
 
Sydney said:
uh... right.
well back in the day, they didn't, it involved pencils and ice cream tubs and it certainly voided your warranty.
Click to expand...

Exactly, "back in the day". That sort of thing no longer happens, Intel even market their "K" processors as being multiplier unlocked so you can get higher frequencies out of them, and how many mobo manufacturers build overclocking options into their BIOS/software now?

I can see the point you were trying to make, but it was a bad example to use :)
 
MrLOL said:
afaik there is no such legislation forcing you to use encryption

Just common sense on the company's part.
Click to expand...

Not sure if this really applies but I think it does, in the Data Protection Act, part of it can be summarised to:

"The departments of a company that are holding personal information are required to have adequate security measures in place."

You could argue that an "adequate" measure is encryption. Isn't this what ICO are going to try and find out? But you are right, I don't think there's anything specifically stating encryption is required, just legal wording mumbo jumbo that can be interrupted in a number of ways.
 
Since anonymous are at the root of this and they are anti Sony corporation etc. surely any risk to PSN users card details is minimal. I'd imagine any risk to this would lose any little public support they have left?
 
Zhokel said:
You could argue that an "adequate" measure is encryption. Isn't this what ICO are going to try and find out? But you are right, I don't think there's anything specifically stating encryption is required, just legal wording mumbo jumbo that can be interrupted in a number of ways.
Click to expand...

Trouble is it leaves the definition open.

Obviously sony will have some measures in place. it would be up to a court of law to decide if what they had was "adequate" or not

You can't make blanket assumptions that for it to be adequate it has to be encrypted.
 
Zatoichi.uK said:
Since anonymous are at the root of this and they are anti Sony corporation etc. surely any risk to PSN users card details is minimal. I'd imagine any risk to this would lose any little public support they have left?
Click to expand...

Did they have much anyway? Can't understand why some people have them up on a peddle stool.
 
Depends if you believe it was Anonymous or not. Convincing a bunch of aspie's to download LOIC and point it somewhere is their main forte, hacking Sony? I cannot see it being done for anything except financial gain.

Plus if it actually was Anonymous then it's somewhat ironic. 77 million compromised accounts = at least 60 million people ****ed over. If you want the sympathy of gamers, don't take their games away.
 
MrLOL said:
Trouble is it leaves the definition open.

Obviously sony will have some measures in place. it would be up to a court of law to decide if what they had was "adequate" or not

You can't make blanket assumptions that for it to be adequate it has to be encrypted.
Click to expand...

Yep, so lets see how it goes then and find out what was needed because the "first" PSN lawsuit has now been filed for failing to “protect, encrypt, and secure the private and sensitive data of its users.”

http://brutalgamer.com/2011/04/27/first-psn-lawsuit-has-been-filed/
 
Zhokel said:
You might need a chair for this one :P.

1) Sony suddenly shuts down the whole Playstation network.
2) Rumours fly about what caused it, when will it be back up!
3) More rumours appear about information being leaked....
4) Sony yesterday announced that a lot of customer information (Name, addresses, D.O.B's etc) have possibly been stolen about 5-6 days after the shutdown.

They're not sure how much information has been leaked, how many users this has affected, nor if any Credit Card information has been leaked, but they can't say credit card information has not been leaked because they have no evidence to say it hasn't.

Roughly my attempt at a quick overview of things. Missed the parts where people are getting angry though for a number of different reasons...
Click to expand...

Ah I see, thanks. :)

Not good stuff!
 
Scaffa said:
Depends if you believe it was Anonymous or not. Convincing a bunch of aspie's to download LOIC and point it somewhere is their main forte, hacking Sony? I cannot see it being done for anything except financial gain.

Plus if it actually was Anonymous then it's somewhat ironic. 77 million compromised accounts = at least 60 million people ****ed over. If you want the sympathy of gamers, don't take their games away.
Click to expand...

Aspies? Nice. Oh sorry, aspie's. With that command of grammar you should probably lay off the bigotry.

DreXeL said:
Lol, I can't believe people STILL think this is anything to do with 'Anonymous' :D
Click to expand...

I explained this less than an hour ago.
 
It''s funny, when I signed up for PSN back when I got my PS3, I remember thinking, why do I need to provide my address and DOB etc. Normally when places ask for that kind of thing I normally provide fake details. I think on that occasion however I did provide real ones incase it had to match up with any credit card details. I just can't remember anything about my PSN account or even what email I used. That's a point, wonder if I get that email some of you have got.
 
DreXeL said:
Lol, I can't believe people STILL think this is anything to do with 'Anonymous' :D
Click to expand...

Hmm after reading a little more into it perhaps not.

I'm in the same boat as a few people and honestly have no idea which password I used, which address is registered to PSN and even which card I used to purchase games several years ago. Hmm not sure whether to cancel or not tbh.
 
jaybee said:
It''s funny, when I signed up for PSN back when I got my PS3, I remember thinking, why do I need to provide my address and DOB etc. Normally when places ask for that kind of thing I normally provide fake details. I think on that occasion however I did provide real ones incase it had to match up with any credit card details. I just can't remember anything about my PSN account or even what email I used. That's a point, wonder if I get that email some of you have got.
Click to expand...

The signup process is weird, and it's not universal across all the stores. For the UK it'll confirm the address against a real one, so whatever you put in has to be real (though it doesn't necessarily have to be your own). The US store does the same. The Japanese store, you can put whatever you want in and it'll sign you up.
 
I subscribed to Lovefilm the other month through the PS3 for streaming. I'm now left wondering if that info could have been compromised or if that was all done through a different server?
 
You must log in or register to reply here.
Back
Top Bottom