Sony PSN hacked again, 93,000 accounts compromised

[nsane.forums]

Sony has been the victim of another attack on the PlayStation Network and Sony Online services, where intruders attempted to log in using a large number of account names and passwords. The vast majority of these login attempts failed, according to Sony, leading the company to believe it has been a victim of an attack of opportunity where hackers tried to access PSN and SOE accounts using information taken from other sources.

"These attempts appear to include a large amount of data obtained from one or more compromised lists from other companies, sites or other sources," Philip Reitinger, the SVP & Chief Information Security Officer of the Sony group wrote on the official blog. "In this case, given that the data tested against our network consisted of sign-in ID-password pairs, and that the overwhelming majority of the pairs resulted in failed matching attempts, it is likely the data came from another source and not from our Networks."

93,000 accounts have been accessed due to this attack, but Sony claims little activity was seen on the compromised accounts before they were locked down. If your account was affected, Sony will be e-mailing you with details and to have your password reset. The company claims credit card information is not at risk.

The best course of action is to make sure you don't share account names or passwords between online services. "We want to take this opportunity to remind our consumers about the increasingly common threat of fraudulent activity online, as well as the importance of having a strong password and having a username/password combination that is not associated with other online services or sites," Reitinger wrote. "We encourage you to choose unique, hard-to-guess passwords and always look for unusual activity in your account."

View: Original Article

[DKT27]

This is getting regular. I wonder if Sony even considers improving themselves.

[PurplebeanZ]

Lol@Sony :P

[Ambrocious]

This just screams "inside job". Seriously, how could a company be this lazy...unless they actually aren't that lazy at security (as I said, possible inside job). Maybe Microsoft has their hands in this scandal...

If this all boils down to SONY's incompetence, well I do say this is rather bothersome.

[SnakeMasteR]

`Hackers` do it in the same way on Steam for ages, so it`s not a new method at all.

And that is more the result when 93,000 ppls were dumb customers than Sony did

not the job in protecting something. It`s like using the same name and password on

every site i visit in my life and from one day to another i`ll lose most access to them.

Maybe some of the data is part of the compromised one`s some days ago. That`ll

be an epic fail. :lol:

[CODYQX4]

This is probably crap from the last hack as opposed to a new breach, given they said there were a lot of login fails.

[shought]

If everything stated in the article is true then Sony couldn't do (much, if) anything about it.

If the username/password combinations really came from a different source then the users are at fault here for using the same combination at different sites.

If the hackers did not use a lot of different systems to carry out this attack then I do think Sony should have blocked the IP(s) of the systems which were essentially 'brute-forcing' the system (repeated login attempts over a short timespan). That's the only thing Sony is to blame for.

[demoneye]

the core thinking of such behavior should be consider who get the most out of it ? IMO Microsoft is one of them ..so ... :D