Yeah no, I am not giving Sony my mobile number I do not trust them to keep that info safe.
HAHAHAHA, right over your headYes, annoying as it is.
...This is the first answer in this thread that may actually explain what is going on.
Should I call Sony proactively? Would that do anything?
How often do you need to log into PSN when you don't have your phone with you?I actually didn't realize 2FA required a phone as opposed to just email. That's even more reason to keep it off thoughI know this is weird in the modern day, but I don't always have my phone on me, and I need to be able to get into accounts without it..
If someone has my password, why are they trying to reset it? This is what I'm not understanding.Someone has your email address and password from a previous leak.
I don't care how super awesome anyone thinks their password is because i have had personal accounts compromised while having the most complex fucking password.
While you're at it, after you get done enabling 2-factor for PSN, enable 2-factor for your Google/Gmail account. I don't care how confident you are in the integrity of anything. It means jack squat.
I don't care how super awesome anyone thinks their password is because i have had personal accounts compromised while having the most complex fucking password.
Take the fucking 60 seconds it takes and click this link and setup 2 step. While you are at it set up 2 step for every other account to every other service that offers it including, no, especially including your fucking email.
Annoying or not, enable 2FA. A little inconvenience is better than having your account compromised. Don't blame Sony when your account is finally compromised.As I write in the OP, my email has 2FA. (And it's annoying as heck)
As I write in the OP, my email has 2FA. (And it's annoying as heck)
I have 2FA on my Gmail account and I haven't had to reauthenticate on any of my devices since my very first authentication. Same goes for PSN's 2FA.As I write in the OP, my email has 2FA. (And it's annoying as heck)
Stop what you're doing.
Activate 2 factor.
Then activate 2 factor again.
Then make sure you have 2 factor.
Then do it all again.
Honestly after chilling on hacking forums for the past 3 years I can say that 2FA is useless.
Its so easy to break through it. Its actually more comprimising to have it on than to not have it on tbh.
OP made the right decision, just have a really good secure password.
Unless you're constantly logging out or logging in from new devices, it shouldn't be that intrusive in the slightest for the email thing. I think the last time Google asked me for authentication was about a month and a half ago when the broken Windows 10 Anniversary Update came out and forced me to reformat my computer.
I do not have 2FA enabled and I do not want to enable it. I have not saved CC data in PSN since their major hack years ago, and I am confident that my PSN password is strong and uncompromised. I am equally confident in the integrity of my gmail password.
Unless you're constantly logging out or logging in from new devices, it shouldn't be that intrusive in the slightest for the email thing. I think the last time Google asked me for authentication was about a month and a half ago when the broken Windows 10 Anniversary Update came out and forced me to reformat my computer.
As I write in the OP, my email has 2FA. (And it's annoying as heck)
The problem is that I clear my cookies CONSTANTLY.
2FA means needing to use my phone EVERY. SINGLE. TIME. I log in via a computer. If you don't clear your cookies, you probably have a much better experience with 2FA than I do. But that doesn't change the fact that it's a massive, massive pain for me personally.
NHale suggested this may be a social engineering attack. Is there anything I could do about this proactively?
Someones trying to get into your account and you purposely dont want to enable TFA? Lol ok
...This is the first answer in this thread that may actually explain what is going on.
Should I call Sony proactively? Would that do anything?
A strong password is good enough though.
So I think I figured out what was actually happening.
I went to PSN to set up an email alias, but as soon as I logged in, Sony prompted me to change my password. Not sure why, since I'd updated it relatively recently. I obliged Sony and gave it a new password.
...so, I'm assuming what was actually going on is that Sony was sending me password reset emails because it wanted me to change my password, not because someone else was trying to reset it.
Thanks for helping me Neogaf, albeit in a roundabout way.
So I think I figured out what was actually happening.
I went to PSN to set up an email alias, but as soon as I logged in, Sony prompted me to change my password. Not sure why, since I'd updated it relatively recently. I obliged Sony and gave it a new password.
...so, I'm assuming what was actually going on is that Sony was sending me password reset emails because it wanted me to change my password, not because someone else was trying to reset it.
Thanks for helping me Neogaf, albeit in a roundabout way.
The problem is that I clear my cookies CONSTANTLY.
2FA means needing to use my phone EVERY. SINGLE. TIME. I log in via a computer. If you don't clear your cookies, you probably have a much better experience with 2FA than I do. But that doesn't change the fact that it's a massive, massive pain for me personally.
I use a password manager. I have strong, randomly generated, individualized passwords for all my accounts. Unless Sony literally just gives my password out, no one is going to get it, so I don't understand why I should be subjected to the extra trouble.
Isn't there a way (or some browser extension) that lets you whitelist some sites, like PSN, so those cookies aren't wiped with the rest?The problem is that I clear my cookies CONSTANTLY.
Yeah no, I am not giving Sony my mobile number I do not trust them to keep that info stay.
So I think I figured out what was actually happening.
I went to PSN to set up an email alias, but as soon as I logged in, Sony prompted me to change my password. Not sure why, since I'd updated it relatively recently. I obliged Sony and gave it a new password.
...so, I'm assuming what was actually going on is that Sony was sending me password reset emails because it wanted me to change my password, not because someone else was trying to reset it.
Thanks for helping me Neogaf, albeit in a roundabout way.
You learned nothing if you didn't enable 2FA...So I think I figured out what was actually happening.
I went to PSN to set up an email alias, but as soon as I logged in, Sony prompted me to change my password. Not sure why, since I'd updated it relatively recently. I obliged Sony and gave it a new password.
...so, I'm assuming what was actually going on is that Sony was sending me password reset emails because it wanted me to change my password, not because someone else was trying to reset it.
Thanks for helping me Neogaf, albeit in a roundabout way.
So I think I figured out what was actually happening.
I went to PSN to set up an email alias, but as soon as I logged in, Sony prompted me to change my password. Not sure why, since I'd updated it relatively recently. I obliged Sony and gave it a new password.
...so, I'm assuming what was actually going on is that Sony was sending me password reset emails because it wanted me to change my password, not because someone else was trying to reset it.
Thanks for helping me Neogaf, albeit in a roundabout way.
Maybe quit constantly clearing your cookies. You're making it harder on yourself.
You do realize Sony isn't going to do jack shit with your number other than use it for this purpose, and cookies on a PS4? That's not quite how it works. It's "set it and forget it" once you get it going the first with auto login.
You know, there are ways to block ads and prevent sites from tracking you without always dumping your cookies. There are browser extensions for that.I get rid of them for privacy reasons. It's not so much that I'm paranoid and more that I don't want websites/ads tailoring what I see, because I worry it gives me a biased worldview.
Might try whitelisting, but I don't really want Sony (or all the other sites that offer 2FA) to store cookies either.
I get rid of them for privacy reasons. It's not so much that I'm paranoid and more that I don't want websites/ads tailoring what I see, because I worry it gives me a biased worldview.
Might try whitelisting, but I don't really want Sony (or all the other sites that offer 2FA) to store cookies either.
I get rid of them for privacy reasons. It's not so much that I'm paranoid and more that I don't want websites/ads tailoring what I see, because I worry it gives me a biased worldview.
Might try whitelisting, but I don't really want Sony (or all the other sites that offer 2FA) to store cookies either.
Is your psn email the same as steam email? From when you got hacked on steam they might've got your email as you made a thread before
http://www.neogaf.com/forum/showthread.php?t=1166135&page=1