psychotron
Member
Seeing this kind of thing too often. Credit card info has been removed from the Playstation store. Sorry you're going through this OP.
That is strange. If they can get in to the site after changing passwords, they have a manner to keep it up, via your mail maybe but I don't know how PSN handles forgotten passwords. Also keyloggers can capture copy/pastes. But all in all, it is kind of a strange hacker if he doesn't give up after one try.Once per 6 months. Problem is: for a year, the "hackers" have beaten me to it. Somehow changing my password doesn't work. They can always get in. It's really very weird since no one at home has access to my devices. And even then doesn't know my passwords. Which are randomly generated. And copy pasted. So no key logger nonsense. Sony doesn't want to help. They just say it's my fault for giving away my password even when I explicitly tell them I didnt. They don't want to deactivate the other console even if they can tell me in which city it is (Budapest, while I'm in Holland). Gets my blood boiling.
It blows my mind how people still have payment info loaded after both major Sony hacks. Just use prepaid cards people...
just dont leave your credit card information in your account.
Definitely. It's 2015, Sony needs to get the cock out of their mouth and get this shit done already.Sony needs to get two-pass auth already
I use PayPal for ever thing instead of psn cards. Works great.
pounds, he lost 500 pounds - practically a grand in northern american monies.
It's fucking disgusting that this shit happens. I don't understand how Sony can tell people they aren't giving them stolen money back and if you call your bank to get that stolen money back you will be punished. This is when it sucks that the people who write about video games aren't actual journalists, 'cause this is the kind of thing every major site should be writing about and pushing Sony for statements over.
I've not read much of the topic, but "Don't save your credit card details on Playstation" isn't a good response to this topic.
It's horrendous that the purchases won't be refunded. When my Microsoft account got compromised in 2011 with all the Fifa Ultimate Team stuff, they instantly locked down my account to investigate, then fully refunded everything once they could see it wasn't legit.
If these have been purchased, surely they have been downloaded to a console? Or they could look at the IP used to purchase them from the web store?
Agreed. People shouldn't be buying ANYTHING online without prepaid cards. Even real cards can get hijacked now a days thanks to mini-card readers in retail or gas stations.
Cash orPre-paid codes from now on for me. I do not trust most online places, even Amazon. And in Amazons case, they won't let you REMOVE the card IIRC. At least Google/Google Wallet does.Pref. Paper
It's fucking disgusting that this shit happens. I don't understand how Sony can tell people they aren't giving them stolen money back and if you call your bank to get that stolen money back you will be punished. This is when it sucks that the people who write about video games aren't actual journalists, 'cause this is the kind of thing every major site should be writing about and pushing Sony for statements over.
It blows my mind how people still have payment info loaded after both major Sony hacks. Just use prepaid cards people...
It's fucking disgusting that this shit happens. I don't understand how Sony can tell people they aren't giving them stolen money back and if you call your bank to get that stolen money back you will be punished. This is when it sucks that the people who write about video games aren't actual journalists, 'cause this is the kind of thing every major site should be writing about and pushing Sony for statements over.
Yeah, it does.Does PS4 have a paypal option? If so I'll change it the second I get home.
Is there any confirmed sources that consumer data were unencrypted and downloaded from those two hacks?It blows my mind Sony has the nerve to say it's the customers problem when their account get hacked. Especially after both SCE and SWP got hacked and had account data stolen because it was saved without encryption.
My friend has an account with over $1000 of digital purchases, mainly PS3. Someone hijacked it, put a stolen card on it and bought some Fifa crap (why is it always Fifa?). The cardholder / CC put a charge back on it since the card was stolen and his account is now banned unless he pays Sony the difference.
Pretty messed up. Especially since there's no way to know if it's his Fault, Sonys, or some other 3rd party that stole his data and cracked his account. He's had no recourse with Sony, and CS has been no help. Which is wierd for someone as long a customer as him, and with those types of digital purchases. He's not someone you want to lose spending money like that.
Definitely needs to happen. Should've happened already.Sony needs to get two-pass auth already
That would be a different situation though. If you found out why you were scammed (as in looking at surveilance videos of the store), i think that the result of that case would be completely different. Then you have solid proof that someone has scammed you. The problem with an account hack is that its harder to prove if it was a hack or not. That is why those cases are diffcult, unfortuantely.Imagine this happened in the physical world? You buy hundreds of dollars in games from Gamestop. One day you notice a $1000 charge on your card from Gamestop, so you go into the store to find out why. Turns out it was fraud, and someone stole your card and bought a bunch of shit at their store. The Gamestop rep shrugs his shoulders and says that you should contact your bank, but if you do, it is highly probable that you will be banned from Gamestop, every game you bought from them will be repossessed, and while they are there, they will delete all your achievements/trophys so you have to start again. People would riot harder than the MS/DRM fiasco.
I really feel for you OP. This isn't limited to Sony. This is something terrible that could happen on either network.
Yeah, it does.
Is there any confirmed sources that consumer data were unencrypted and downloaded from those two hacks?
-----------
Regardless, situations like this really sucks. Its might be hard to prove one way or the other how someone else got a hand on someone's PSN/SEN account. Would be better if more goodwill from Sony was shown.
That would be a different situation though. If you found out why you were scammed (as in looking at surveilance videos of the store), i think that the result of that case would be completely different. Then you have solid proof that someone has scammed you. The problem with an account hack is that its harder to prove if it was a hack or not. That is why those cases are diffcult, unfortuantely.
Why? Should they give back money just because you state your account was hacked? People could fraud Sony incredibly easy if that were the case. Nope. Also, of course your bank can't do a charge back. If you bought a book in a store, would your really expect your bank to be allowed to do a charge back, since the store is actually out an item. It's somewhat the same thing. A proper credit card, where you use actual credit, you won't be forced to pay for something you didn't use it for, but it's the credit card company that pays it. If you have a credit card that does charge back, you have a sucky credit card.
“In relation to the transactions you recently flagged as unauthorised, our investigation concluded that the serial number of the console on which these transactions were made does not match the serial number of the console you provided to us on your original call. Regrettably, as stated in the PlayStation Network Terms of Service, we are unable to offer a refund for purchases made on PlayStation Store unless the content is found to be defective. We have taken the appropriate action against the console which made the purchase but unfortunately we cannot share the details of this console with you for security purposes.”
Is there any confirmed sources that consumer data were unencrypted and downloaded from those two hacks?
I hope things will work out OP. Why is Sony dicking around this long?
I bought a PS4 game on PS Store yesterday or two days ago, then i got the option to pay with credit card or Paypal. I havnt seen that before. I dont know if it works in every country though, but it works for me at least.Didn't know I can use paypal. I'll do that as soon as I get home.
I wonder if they are allowed to do that, or if they are afraid that its not enough proof if a owner of a blacklisted should complain about it. What did the customer service say when you mentioned this solution by the way?sony can see that my ps4 was deactivated and annother ps4 activated as the primary account. they can black list the console that it was switched to and it proves that i didn't make those purchases.
I see. Thanks for the info.Non-sensitive information such as emails and information that could be found in a phone book were unencrypted. Passwords and payment data were encrypted, though I believe at the time of the attack, complete credit card information was only stored console-side--the webstore didn't exist yet. The only credit card information that would have been vulnerable at the time were transactions that could be captured as the breach was occurring.
Non-sensitive information such as emails and information that could be found in a phone book were unencrypted. Passwords and payment data were encrypted, though I believe at the time of the attack, complete credit card information was only stored console-side--the webstore didn't exist yet. The only credit card information that would have been vulnerable at the time were transactions that could be captured as the breach was occurring.
They literally told him that even though they do believe it was fraud and that action has been taken against the console that did it, they still wouldn't refund his money. I just can't even wrap my head around that.
r if they are allowed to do that, or if they are afraid that its not enough proof if a owner of a blacklisted should complain about it. What did the customer service say when you mentioned this solution by the way?
Because they made money off it it, legitimate or not, and the victim's only other avenue to pursue, a bank chargeback, will get them banned and effective destroy all their legitimate content, so he has to just give up and write it off as a loss.
Sony's stance against fraud is basically a PR smokescreen. They're laughing all the way to the bank with whatever money they can get.
I don't have time to search ATM, but I remember reading that CC data in the PSN hack where Sony pulled PSN for the better part of a month was NOT encrypted. My bank also immediately change my account numbers and issued new cards.
Haven't used a CC tied to an account since on any service.
Not sure if it was just rumor, but I remember people talking about it and how stupid/surprising it was. Maybe it was current transactions as you said, or a list of recent payments.
Q: Was my personal data encrypted?
A: All of the data was protected, and access was restricted both physically and through the perimeter and security of the network. The entire credit card table was encrypted and we have no evidence that credit card data was taken. The personal data table, which is a separate data set, was not encrypted, but was, of course, behind a very sophisticated security system that was breached in a malicious attack.
Q: Was my credit card data taken?
A: While all credit card information stored in our systems is encrypted and there is no evidence at this time that credit card data was taken, we cannot rule out the possibility. If you have provided your credit card data through PlayStation Network or Qriocity, out of an abundance of caution we are advising you that your credit card number (excluding security code) and expiration date may have been obtained.Keep in mind, however that your credit card security code (sometimes called a CVC or CSC number) has not been obtained because we never requested it from anyone who has joined the PlayStation Network or Qriocity, and is therefore not stored anywhere in our system.UPDATE: While we do ask for CSC codes, we do not store them in our database.
I think that was just a rumour, if we're thinking about the same thing. Someone posted on a forum saying that they had a lot of CC info from PSN, but it was believed to be fake because they claimed that they had the CCV codes of the card as well, which was confirmed to not be stored on the PSN servers.I don't have time to search ATM, but I remember reading that CC data in the PSN hack where Sony pulled PSN for the better part of a month was NOT encrypted. My bank also immediately change my account numbers and issued new cards.
Haven't used a CC tied to an account since on any service.
Not sure if it was just rumor, but I remember people talking about it and how stupid/surprising it was. Maybe it was current transactions as you said, or a list of recent payments.
They literally told him that even though they do believe it was fraud and that action has been taken against the console that did it, they still wouldn't refund his money. I just can't even wrap my head around that.
Imagine this happened in the physical world? You buy hundreds of dollars in games from Gamestop. One day you notice a $1000 charge on your card from Gamestop, so you go into the store to find out why. Turns out it was fraud, and someone stole your card and bought a bunch of shit at their store. The Gamestop rep shrugs his shoulders and says that you should contact your bank, but if you do, it is highly probable that you will be banned from Gamestop, every game you bought from them will be repossessed, and while they are there, they will delete all your achievements/trophys so you have to start again. People would riot harder than the MS/DRM fiasco.
I really feel for you OP. This isn't limited to Sony. This is something terrible that could happen on either network.