Although we are still investigating the details of this incident, we believe that an unauthorized person has obtained the following information that you provided: name, address (city, state, zip), country, email address, birthdate, PlayStation Network/Qriocity password and login, and handle/PSN online ID. It is also possible that your profile data, including purchase history and billing address (city, state, zip), and your PlayStation Network/Qriocity password security answers may have been obtained. If you have authorized a sub-account for your dependent, the same data with respect to your dependent may have been obtained. While there is no evidence at this time that credit card data was taken, we cannot rule out the possibility. If you have provided your credit card data through PlayStation Network or Qriocity, out of an abundance of caution we are advising you that your credit card number (excluding security code) and expiration date may have been obtained.
We thank you for your patience as we complete our investigation of this incident, and we regret any inconvenience.
quote: Even if a hash is stored and not the password it is fairly trivial to reverse the hash if you know the hashing algorithm (which we should assume was also compromised.)
quote: I don't know why you would assume that. There is a significant difference between data being compromised and the hashing algorithm being compromised. Cracking the passwords from the hashes should also be pretty much impossible, since it is likely that some form of time sensitive salt was added to the password hash.
quote: If the hashing algorithm was compromised, that would pretty much mean that the hacker not only got access to the database, but also got access to the source code of the PSN servers/software.
quote: On the other hand, ask a computer to calculate the prime roots of 74,078,166,141 and you'll be waiting for a much longer time.
quote: Let's hope they don't have quantum computers!
quote: It's just a credit card, you're protected against fraud automatically, so not really a big deal. Been through having my account info stolen before from Orbitz.com and I simply got a new card and a ton of mail for each fradulent transaction.
quote: I don't even have a PS3
quote: That right there invalidated your entire rant.
quote: Yeah it's called a "comparison". Look it up.
quote: I can't believe Sony fanboi's claim it's "almost as good as Xbox Live". Ummm no. Not even close.
quote: My friend and I were looking forward to playing it online on his PS3 against our friends, no dice.
quote: About 2 weeks ago I got a call from my CC company that someone had attempted to use my card in a neighboring state (indeed one that I have traveled to and through in the recent past). They detected that the charge was fraudulent (I'm guessing based on the card number being used in two locations which were physically too far apart to be completed in that amount of time) and denied the charge. Obviously I reviewed my statement carefully but there was not one invalid charge on it.The protection CC companies give you is powerful and automatic, after all, you are not liable for the charges, that means they need to either pay up or take legal action with the stores, both of which cost them time and money.Finally, a stolen card does not affect your credit rating unless your card issuer screws up how they handle the situation. So long as they state 'Lost/Stolen' as the reason the old account was closed, and the new account keeps the old account's opening date, you won't have lost anything. If they don't do this, you can appeal to have the data corrected and you will almost certainly win.
quote: It's just SOME CASES where they don't (for example, what if the charge came from your home state -- that would be "believable")...
quote: The point is there is reasons why people don't just post their CC #s in public forums.
quote: Why not just post your CC # here in the forums while you're at it, if you think there's no harm!
quote: And also, consider -- individuals now have your full name, address, birth date, and email and can now order fake credit cards in your name and target you with phishing attempts/spam.
quote: Furthermore just because you recover anything that was stolen, does not mean the credit card company does.
quote: Please stop trying to downplay the seriousness of the situation. The possibility CC information being stolen in mass is of no laughing matter.
quote: Many people have a problem using their credit card information online in the first place, do you seriously think this won't make people think twice about plugging their CC information into the Sony Marketplace now that this has occured? I know I won't again.
quote: You do realize being the victim of credit card fraud affects your credit score and impacts your ability to get mortgages, etc.?
quote: And that "automatic" protections takes a certain amount of effort and surveillance?
quote: Honestly...isn't it easier to just use a remote or a controller to rewind and pause your movie?
quote: Wow. The most fastest selling, utterly useless gaming device ever.
quote: The market for casual games is much larger in terms of audience than your little world of Call of Duty and Uncharted, my friend.