Playstation probably hacked again, this time by Ourmine - Sensationalist Headlines

archive of playstation tweet: [url]https://archive.fo/8LuYY[/url] [media]https://twitter.com/RPGSite/status/899401990618308609[/media] [media]https://twitter.com/RPGSite/status/899402535546507264[/media] [media]https://twitter.com/RPGSite/status/899403736585428992[/media] no actual article yet, its fresh.

God damn, Sony never fucking learns do they. Having account breaches is unacceptable.

Seems to just be social media accounts for the time being

Will they ever learn

This is the precise reason I add my debit card to my Playstation account and immediately remove it when I want to buy something. You can't trust Sony with any sensitive information, they don't give a shit about security.

[QUOTE=Janus Vesta;52594671]This is the precise reason I add my debit card to my Playstation account and immediately remove it when I want to buy something. You can't trust Sony with any sensitive information, they don't give a shit about security.[/QUOTE] It's not like they probably keep logs where that card data is still present. It's too late now

[QUOTE=Janus Vesta;52594671]This is the precise reason I add my debit card to my Playstation account and immediately remove it when I want to buy something. You can't trust Sony with any sensitive information, they don't give a shit about security.[/QUOTE] use privacy.com. that way it won't use your real card, it'll use a card that will only pass through sony and nobody else.

[QUOTE=Plaster;52594676]It's not like they probably keep logs where that card data is still present. It's too late now[/QUOTE] They would have logs of recent card numbers. PCI explicitly says that you should only retain card info only as long as it needs to be processed, especially in any non obfuscated fashion. But that assumes that Sony follows PCI compliance. :v:

[IMG]http://i.imgur.com/egpvXVS.png[/IMG]

I know this is stupidly obvious but if you use Playstation/PSN you should change your password to be on the safe side. [editline]edit[/editline] You should also remove any saved payment info stored on your account

I wonder if it has anything to do with that html bypass thing lmao

[QUOTE=BlindSniper17;52594718][IMG]http://i.imgur.com/egpvXVS.png[/IMG][/QUOTE] What kind of normal security group would ever post publicly from their accounts :v:

i have two-factor authorization but i'm gonna go ahead and remove my card from my account to be safe

[QUOTE=MR-X;52594626]God damn, Sony never fucking learns do they. Having account breaches is unacceptable.[/QUOTE] Imagine still not using 2FA on your company social accounts. Imagine still using a weak password which is printed in plain text in internal emails like it was last time. Honestly I won't be surprised if thats the reason it happened again, they don't exactly keep their social logins hidden. Hopefully its just the social accounts, forgot I still had my fucking card saved on PSN so if they got the DB then well hah fuck me, lets hope they salted it correctly this time.

How does this happen to PlayStation so much? I can't think of any other companies similar to what they do have so many security breaches. Is their security team that incompetent?

[QUOTE=Tamschi;52594735]What kind of normal security group would ever post publicly from their accounts :v:[/QUOTE] Some security groups test how vulnerable their target company is by going undercover. They sometimes even record themselves with hidden cameras to show to the company how they breached their facilities. [video=youtube;pL9q2lOZ1Fw]http://www.youtube.com/watch?v=pL9q2lOZ1Fw[/video] My guess, these hackers wanted to demonstrate what they could breach with the information they had access to.

[QUOTE=Gamerman12;52594687]use privacy.com. that way it won't use your real card, it'll use a card that will only pass through sony and nobody else.[/QUOTE] [img]http://i.imgur.com/AFYoixm.png[/img] No dice for us Europeans, unfortunately.

Yeah I took a screenshot of it just in case it was a hack

I hope Sony learns this time. I know I'm just lying to myself to feel better, but I sincerely hope they do learn this time.

[QUOTE=Zet;52594823]I hope Sony learns this time. I know I'm just lying to myself to feel better, but I sincerely hope they do learn this time.[/QUOTE] We all know they won't.

[QUOTE=Zet;52594823]I hope Sony learns this time. I know I'm just lying to myself to feel better, but I sincerely hope they do learn this time.[/QUOTE] They've had much worse breaches before. If that didn't change them, nothing will.

[QUOTE=Grandzeit;52594838]They've had much worse breaches before. If that didn't change them, nothing will.[/QUOTE] Not going to lie, I'd love to see more recent internal communication regarding their movie business.

[QUOTE=Zet;52594823]I hope Sony learns this time. I know I'm just lying to myself to feel better, but I sincerely hope they do learn this time.[/QUOTE] Without knowing how they were breached I think it's a little harsh to judge them so quickly.

Are they gonna give me more free shit to make up for their gross fucking incompetency [editline]a[/editline] I'll take Infamous: Second Son please, I only started the series because they gave the original to me on account of their fuckup a some years ago. [editline]a[/editline] I'm tired of this shit happening. Probably no use now, but I've removed my card and I really don't have any more plans to add it back.

[QUOTE=Tamschi;52594797][img]http://i.imgur.com/AFYoixm.png[/img] No dice for us Europeans, unfortunately.[/QUOTE] A pretty good alternative is just buy the gift cards from somewhere like amazon and redeem them. So far amazon is feeling a lot safer than playstation and the cost is the same.

If I was to get a console, the PS4 would be the most enticing if it weren't for these stupid breaches and their company's thick-skulled mentality in general. I've got a Steam Link ready to go if I ever decide I'm gonna move to the couch, and if not that, a long HDMI cable.

[QUOTE=Tamschi;52594735]What kind of normal security group would ever post publicly from their accounts :v:[/QUOTE] ourmine is pretty famous for doing this. they're sort of a grey hat group. they just look for security holes and exploit them at no gain, and inform the company like any white hat group would. the questionable thing is the way that they make the security holes known. rather than just telling the company privately, they get into their social media accounts and make everyone who follows shit a brick thinking they got compromised. they do it that way to advertise their services, that's what's sketchy about them. they've done it to a lot of youtube accounts to no ill effect as well. it was actually pretty funny when they got into the good mythical morning channel, a lot of people were joking about it being an arg for buddy system season 2 (the plot of buddy system was that their channel got hacked and they had to do a bunch of soul searching to get it back) I'm not at all concerned about ourmine getting in, but rather that they were able to. while technically malicious, they're fairly harmless other than the panic they cause.

to be honest i rather prefer they make noise if they break in and do nothing, that way public perception forces them to fix it instead of pretending it doesnt exist.

[QUOTE=Wii60;52595294]to be honest i rather prefer they make noise if they break in and do nothing, that way public perception forces them to fix it instead of pretending it doesnt exist.[/QUOTE] I agree there, but it's not making a ruckus that makes them grey hat, it's that they make a ruckus to advertise their more legitimate services. that said I'm not so sure it'd be as effective if they didn't put a name behind the hack.

[QUOTE=butre;52595306]I agree there, but it's not making a ruckus that makes them grey hat, it's that they make a ruckus to advertise their more legitimate services. that said I'm not so sure it'd be as effective if they didn't put a name behind the hack.[/QUOTE] So they illegally hack services but also offer paid legal security audits? How do they not get indicted for unauthorised access?