Genesis Knight
Member
Someone have the YouTube link that GIF is from? I'd like to see it in context.
kurtrussell said:Fantastic survey currently running over on Slashdot:
http://www.imageuploading.net/images/10621/sony-survey
Rootkit DRM is currently way ahead at 34%, but I have a feeling that it'll face close competition from the data breach when more people realise that credit card numbers were actually taken....
jorma said:yeah i bet mine is one of those 12k cc's, i vaugely remember trying to update the US store with my new CC and finding out it no longer accepted my euro visa card.
*Phew* in that case.
Captain Tuttle said:Microsoft spent a billion and a half dollars extending a one year warranty to 3. And they gave you a free month of Live if/when your machine died.
No bow though.
Zoe said:PSN or SOE?
sun-drop said:are the soe and psn systems in any way connected technically speaking?
if not .... i'm wondering if this wasn't an inside job, an ex employee leaking a password or info etc ...
Zoe said:It doesn't really have to be. SOE was breached a day or so before PSN... probably the hacker just hit SOE, slept, woke up and hit PSN.
VisanidethDM said:I still think people is way too harsh with Sony. If a group of motivated hackers want to pull something like this, there's nothing you can do to stop them.
.
Karma said:So sad I ever gave Sony my information. Will never trust them again.
Mojojo said:It exploited a known vulnerability in the application server to plant software that was used to access the database server that sat behind the third firewall, said Shinji Hasejima
Hasejima conceded that Sony management had not been aware of the vulnerability that was exploited, and said it is in response to this that the company has established a new executive-level security position, that of chief information security officer, to improve and enhance such aspects
Having a known vulnerability and doing nothing about it might have helped the hackers a little, and Sony merits all the backlash it gets from this, no matter how "cool" the company might be.
Darklord said:If I played SWG years ago, would it still have my CC info?
Regardless, people being too harsh on Sony? They deserve all this flak and then some, so for the foreseeable future it's nailed into their fucking heads not to screw up this bad EVER again. Giving Sony the benefit of the doubt in this situation is just ridiculous. Their vulnerable system, their fault.VisanidethDM said:I wouldn't read too much in that bit of PR material. On one hand, I doubt Sony is openly admitting being superficial in handling security (they're japanese, ok, but that's suicide in case of a class action); I wouldn't be surprised if the original statement was something along the lines of a "know vulnerability not fixable in the old system" that is not gonna be a problem in the future. Ie, a better PR statement than "this stuff happens, and no matter what we do if tomorrow they really want to do it again, they will. Btw, store is up soon".
plufim said:Once I get my PS3 this year, as far as sony knows I live on 123 fake street.
A card can expire, but its replacement often has the same number.Mashing said:If if they did it would probably be an expired card by now.
Hanmik said:why are people so sure that SOE was hit a day before PSN...? is it in the press release..? because yesterday I remember people saying that it was the same attack.. something about a twitter from Sony If I remember correctly..
enzo_gt said:Regardless, people being too harsh on Sony? They deserve all this flak and then some, so for the foreseeable future it's nailed into their fucking heads not to screw up this bad EVER again. Giving Sony the benefit of the doubt in this situation is just ridiculous. Their vulnerable system, their fault.
kpop100 said:Do yourself a favor and go look up the meaning of tatemae, and see how it fits in here.
duk said:All you gotta do is move then..
coopolon said:I'd rather the company not screw me over then screw me over and the apologize profusely.
harriet the spy said:pardon my ignorance, but can they not easily know exactly how many of those credit cards are still active? I am assuming that on a 2007 database most of them would be expired, right?
Then they can just contact the banks for the last ones and cancel those who had not.
Unless I am missing something.
cjelly said:But when a card expires the new one has the same number as the old one. All that changes is the valid from and to.
VisanidethDM said:The fact it was a 2007 database probably justifies lower security measures. Those cards are almost certainly expired.
shidoshi said:Cards being expired doesn't mean anything unless you've also closed those cards. Cards automatically get renewed, holders are sent new copies. New copies have the same number, and from what I remember, a similar expiration date. If your card on file had an expiration date of 05/09, for example, you then try 05/12, 05/13, or 05/14 to see if it works.
I mean, seriously... guessing a new date for that same number wouldn't be hard. Might take a number of tries, but if somebody wanted to, they'd do it. It certainly makes the data less attractive than a database of numbers where you don't have to do any guessing of expiration dates (being that they're all current), but still.
DryvBy2 above says that numbers get changed a lot, but I've had plenty of credit card renewals where that simply was not the case.
VisanidethDM said:That's absolutely not true. I just renewed a card, and there's a 2 months gap between the release date of the new card and the expiration of the old one, and a 3 months difference between the expiration of the old and the expiration of the new, before even addressing security codes (that were not leaked).
Besides, banking systems get alerted of wrong data inputs even before people runs out of attempts. When your bank calls you telling you they blocked your card, it's often because someone used a number of attempts to input the right data and shopped somewhere you usually don't.
People shouldn't underestimate the security levels on digital transactions. The banking/insurance system has all the interest in making it as safe as possible.
SplendidWario64 said:Good news guys! Only 900 credit cards were active!
http://www.destructoid.com/sony-only-900-of-our-stolen-credit-cards-were-active-200301.phtml
Same. Sony can't catch a break this gen, the Playstation brand isn't doing so hot.Interfectum said:Heard this on NPR this morning. It was the top news after Osama. Crazy shit.
I think we all owe Sony an apology.Wario64 said:Good news guys! Only 900 credit cards were active!
http://www.destructoid.com/sony-only-900-of-our-stolen-credit-cards-were-active-200301.phtml
Wario64 said:Good news guys! Only 900 credit cards were active!
http://www.destructoid.com/sony-only-900-of-our-stolen-credit-cards-were-active-200301.phtml
VisanidethDM said:That's absolutely not true. I just renewed a card, and there's a 2 months gap between the release date of the new card and the expiration of the old one, and a 3 months difference between the expiration of the old and the expiration of the new, before even addressing security codes (that were not leaked).
Besides, banking systems get alerted of wrong data inputs even before people runs out of attempts. When your bank calls you telling you they blocked your card, it's often because someone used a number of attempts to input the right data and shopped somewhere you usually don't.
People shouldn't underestimate the security levels on digital transactions. The banking/insurance system has all the interest in making it as safe as possible.