backtop


Print 102 comment(s) - last by crazyblackman.. on Apr 29 at 11:58 PM


PlayStation Network customers have had their personal information and possibly credit cards stolen. Sony just now decided to tell them after six days of service outage for undisclosed reasons.
Playstation Network and billing system has been down for six days, company just now decide to let users know the worst

Sony Computer Entertainment America LLC has just announced some very bad news for Playstation Network (PSN) users (accessible via the PlayStation 3 and PSP) who have made purchases -- they have had their personal info and possibly credit card numbers stolen.

Writes Sony:
Although we are still investigating the details of this incident, we believe that an unauthorized person has obtained the following information that you provided: name, address (city, state, zip), country, email address, birthdate, PlayStation Network/Qriocity password and login, and handle/PSN online ID. It is also possible that your profile data, including purchase history and billing address (city, state, zip), and your PlayStation Network/Qriocity password security answers may have been obtained. If you have authorized a sub-account for your dependent, the same data with respect to your dependent may have been obtained. While there is no evidence at this time that credit card data was taken, we cannot rule out the possibility. If you have provided your credit card data through PlayStation Network or Qriocity, out of an abundance of caution we are advising you that your credit card number (excluding security code) and expiration date may have been obtained.
Sony contracted a cloud services provider, Qriocity to manage its customers' data.  Sound familiar?  That's not surprising.  In recent months email relationship firms Epsilon and SilverPop suffered similar data breaches, losing personal information of customers of Krogers, Walgreens, Best Buy, Chase Bank, and more.

But this recent breach is arguably the worse yet, given just how much data is said to have been stolen and the possibility that credit card data was stolen.

Sony states:
We thank you for your patience as we complete our investigation of this incident, and we regret any inconvenience.
But, it writes that customers are now responsible for monitoring their credit card statements and credit stores to watch for any damage.  In short the message reads something like, "Sorry guys, but you're on your own now!"

According to outraged commenters the PSN has been down for six days now, but Sony is just now owning up to the fact that there was a massive security breach.  Secondary sources point to the network being down since at least April 21.

One must wonder how many more companies will see their customers violated before tech firms start to get the idea that handing valuable data to small third-party providers might not be the best idea.  It may be cheap, but as these recent incidents show, the utter lack of security and accountability can lead to many a nightmare.


Comments     Threshold


This article is over a month old, voting and posting comments is disabled

RE: Such is the price of technology.
By AnnihilatorX on 4/27/2011 4:36:45 AM , Rating: 2
Company which stores sensitive details, should retain responsibility for data security. Even though they've taken adequate measures to protect it, it should still retain responsibility for leaks. Any successful vector of attack conducted by hackers can potentially be looked at and improved upon.

If Dailytech has my credit card detail and it got attacked and leaked, you are basically saying I should blame myself?


By marvdmartian on 4/27/2011 8:39:41 AM , Rating: 1
I agree that the vast majority of the responsibility of safely storing the information belongs with the company that has requested that info in the first place. Let's face it, there are plenty of companies out there, including (but not limited to) utility companies, telephone companies, entertainment (including cable/satellite) companies, etc, that ask a LOT more personal information than they probably really need, of their customers.

Seriously, it won't surprise me if there's not a class action lawsuit brought against Sony within the next week or so.


By Yoshino Kurokawa on 4/27/2011 3:01:57 PM , Rating: 2
I'm not saying that they shouldn't be responsible - I'm saying that, in reality, nothing is 100% hack-proof, and it's foolish to think so.

And that it's our responsibility, as with all things, to keep an eye on what we have and to deal with the unfortunate should it occur.

I'm just saying that getting mad at every single company that gets hacked is like getting mad at every single tornado that hits Texas. For every security update we do, someone will take the time to find an end-run. It's becoming clear that relying on the companies to come up with a magic elixir to keep us completely safe is a wasted endeavor.

And like tornados, you can't stop them entirely. If you don't like them, you can either move (or in this case, don't give the companies sensitive information), or prepare yourself for the unfortunate.


“And I don't know why [Apple is] acting like it’s superior. I don't even get it. What are they trying to say?” -- Bill Gates on the Mac ads














botimage
Copyright 2014 DailyTech LLC. - RSS Feed | Advertise | About Us | Ethics | FAQ | Terms, Conditions & Privacy Information | Kristopher Kubicki