That happened to me in January, message popped on PS4. I suppose it's just security measures.
-
Hey Guest. Check out your NeoGAF Wrapped 2025 results here!
PSN account was just hacked
- Thread starter Rimon-hanit
- Start date
Palette Swap
Member
Technically, they've been doing fuck all to help users secure their accounts. The lack of two form authentification is on Sony, no one else.
And yes, the average user should do more to protect their data by using strong, unique passwords, but the current landscape is that there's a shitload of sensitive online services that take it on them to help dumb users, by increasing authentification measures on their side. Sony isn't one of them, which is a shame in 2016.
On a venn diagram there is little to no overlap between users who use 2FA and who use the same password everywhere on the Internet; Those who are savvy enough to use 2FA are usually savvy enough to not reuse passwords. It's shameful that Sony still don't have 2FA but let's be real here, it and other authentication measures being made available will never be a panacea for human error and laziness.
Ultimately you've got to work with what you're given and in real terms a 30 character, unique, randomly generated password is more than adequate security especially if the email address associated with the account has 2FA. The tools are already there to lock down a PSN account.
RainblowDash
Gold Member
I really hope Sony comes through because I had a ton of stuff bought on PSN. I'll be taking to them later today.
Yea, it is entirely possible the reason my account randomly had like 100 dollars of Fifa Points purchased was my fault. Still doesn't excuse their customer support acting the way they did. Either way, I guess the best solution is to not leave credit card info saved on PSN account or any other account really. Wasn't Sony actually keeping credit card info in a plain text file unencrypted on their servers at some point back during PS3 era...
EDIT: I have never owned a FIFA game in my life btw, and the customer service guy said he could tell it was added from their web store and not on a system. It also was from an IP out of Canada and he insisted on trying to get me to buy a service plan and was denying the refund until arguing got through to him. I guess the IP being out of Canada doesn't really mean anything because it could have been through a VPN or something I guess.
This actually happened to me too this week. I woke up to £120 having been spent on my account and my sign in ID was changed.
I marked the transaction as unauthorised through PayPal and have had the money refunded. After several conversations, Sony have changed my sign in ID back and suspended my account, telling me to just sit and wait for a final verdict.
I marked the transaction as unauthorised through PayPal and have had the money refunded. After several conversations, Sony have changed my sign in ID back and suspended my account, telling me to just sit and wait for a final verdict.
Memorabilia
Member
The way Sony handles these types of issues is absolutely inexcusable. I expect shady, fly-by-night bullshit like this from eBay or Paypal. But Sony?
Either I'm missing something here or something isn't right - I reset my password online, but the PS4 isn't picking up that the account has a new password - it's just carrying on letting me access the store, download demos etc without prompting for the updated password.
I've tried logging out, a full restart of the PS4 and switching user, but it still hasn't asked for the new password. Does it only ask when I try and buy something that costs money?
I've tried logging out, a full restart of the PS4 and switching user, but it still hasn't asked for the new password. Does it only ask when I try and buy something that costs money?
Xenoflare
Member
That shouldn't happen, I do not have a PS4 but my PS3 is very sensitive to this stuff, I clearly remember that after I change my password my PS3 logged itself out.
Thanks - it's really strange. I even logged the account out manually and it just signed right back in without prompting for a password.
I went to Payment Information in the store which did ask me for the password (and accepted the new password) - I also manually signed out and back in in Account Settings - still a bit concerned the PS4 didn't force a logout itself though.
Toonami 99
Member
I had my account accessed 2 nights ago. I just randomly checked my email and noticed that Sony networks sent an email for email verification and password change, then 4 paypal notices for purchases.
Since I actually haven't turned on my PS3 in months I knew something was up. Luckily only 20 dollars was spent. I changed all my paypal security stuff and contacted Sony support via chat. The agent was very helpful. He recovered my account and sent me an email to reset my password and credited me the money.
I put a much longer password and added more security. From what I see the person who accessed my account spent the $20 on zen for Never winter nights
Since I actually haven't turned on my PS3 in months I knew something was up. Luckily only 20 dollars was spent. I changed all my paypal security stuff and contacted Sony support via chat. The agent was very helpful. He recovered my account and sent me an email to reset my password and credited me the money.
I put a much longer password and added more security. From what I see the person who accessed my account spent the $20 on zen for Never winter nights
ShinobiMuramasa
Member
My account was also compromised a couple of days ago. Whoever did it bought $80 worth of DLC for a game that I've never played, so that triggered the system to ban my account. I got on the live chat and the representative said that the charges would be reversed and that they would lift the ban. Nothing has happened yet, so I got on the chat again today and they said the same thing.
JetBlackPanda
Member
My buddy that sits next to me at work is on the line with PSN right now. His account was hacked, he is banned from PSN and they spent all his wallet money.
so, something is clearly happening with Sony.
so, something is clearly happening with Sony.
StriKeVillain
Banned
Yeah, my account was compromised just this week. Luckily they only spent $60 (taken from Paypal) and I was chatting with PSN support within minutes of it being hacked. Couldn't get the funds transferred back to my bank but at least I got the $60 back into my wallet.
Next thing I did was removed any trace of payment info from both PSN and XBL.
Next thing I did was removed any trace of payment info from both PSN and XBL.
Just signed onto my PS4 for the Titanfall beta and saw that my username was changed and the email/password was different. Changed it all to a different email and removed my credit card info. I don't see any purchases made so that's good.
I can't activate my PS4 as my main console though so I guess I have to call Sony "support".
I can't activate my PS4 as my main console though so I guess I have to call Sony "support".
JetBlackPanda
Member
looks like they bought a bunch of Neverwinter stuff.
Xaero Gravity
NEXT LEVEL lame™
It's pathetic that every time a thread like this gets bumped, I instantly assume it's a new one.
MakeMeFeelAlive
Member
There must be something going around. My friend just had his account hacked last week. I haven't had a chance to login in a few days, so I'll try today. Hopefully nothing is wrong with my account.
I can't believe we still have Sony defenders.
But why are people bumping multiple threads to post exactly the same message. What's the purpose in that?
My personal preference would be to bump the security thread because users could learn a thing or two along the way.
http://www.neogaf.com/forum/showthread.php?t=1245625
Please explain how I am defending Sony given you're quoting one of my many posts calling Sony a shambles for being late to the 2FA game.
Mendax
Member
apparently not, and people also use 4 letter passwords. kinda invalidates reasons to complain about security...
maybe's he is agreeing with you and continuing your line of thought? some people on here always assume quoting is being aggressive hha
toythatkills
Member
I'm pretty sure the PIN on your console is just to prevent access on your console, unless I'm thinking of something else.
No, Console PIN is different.
"PS Store> Account settings> security."
It's a PIN for purchases/adding funds to your wallet.
toythatkills
Member
Well I had no idea that option existed, which I suppose is why people don't use it, if it's a big secret
The process is a bit labyrinthine. You can't just do it from your PS4, you have to go to the store website.
Basically, go to the PSN store website
Scroll down
Click Manage Account
Click Account
Click Security
Click Create PIN
toythatkills
Member
Sony probably did that themselves.
idontbelieveyou.gif
TyMiles2012
Member
There's no glitch. Neverwinter is a popular F2P game, meaning it likely has a fair amount of microtransactions, meaning most people will store their card info, making them easy targets for hackers.
theangrypirate
Member
August 24th
toythatkills
Member
People aren't getting hacked who play Neverwinter, people are getting hacked and the hacker is buying stuff in Neverwinter.
Makes no difference whether or not you've played it.
What? How? I thought it's impossible to change your username on PSN oO
FiveMinuteHero
Member
Not sure this is normal behaviour but....
This morning I received an email with the link to change my password, even though I did not request that. In the afternoon I received another. "WTF" I thought, so I switched on my PS4 and it didn't log straight in as it usually does. When I selected "login to PSN" it prompted me that I am required to enter a new password. I then received an email with the link to change my password, and I even had to enter my DOB as a security measure.
Is this "normal"?
This morning I received an email with the link to change my password, even though I did not request that. In the afternoon I received another. "WTF" I thought, so I switched on my PS4 and it didn't log straight in as it usually does. When I selected "login to PSN" it prompted me that I am required to enter a new password. I then received an email with the link to change my password, and I even had to enter my DOB as a security measure.
Is this "normal"?
toythatkills
Member
So apparently he was on an account with a different username, a different email address, and a different password.
Doesn't sound much like his own account.
Ah okay now I understand. Something like what happened to Steam where users could see other users private information for a short time
Sounds like someone got a hold of your e-mail/password combo that you use for PSN and tried changing your shit. I'd change that password on any other websites you use it on, especially your e-mail.
FiveMinuteHero
Member
In that case, the two step authentication saved my ass.