We should have been safe with Sony, say gamers

(Reuters) - Sony PlayStation gamers expressed shock and disappointment on Wednesday at a massive data hack in which their names, addresses and credit-card details might have been stolen from the PlayStation Network.

Shoppers at London video-games stores said they might leave the network, PSN, which allows them to play games with 77 million other members and buy games online, while some gamers writing in online forums called for a boycott of Sony products.

The story is too old to be commented.
Temporary_Name2734d ago ShowReplies(3)
MGRogue20172734d ago

Relax, Sony will have it all sorted out soon.

john22734d ago

I don't know whether we should laugh or cry with this mess

OMGitzThatGuy2734d ago

They save info as plaintext lol
You should cry
File/Save As/Text Document

Christopher2734d ago (Edited 2734d ago )

This makes no sense.

1. Encryption is utilized in databases to store data that will be converted using an encryption algorithm for comparison before being checked against the database. The only data I would encrypt is a validation test on your partial CC info from your PS3 to an outer layer DB for verifying your purchasing credentials. But, on the internal servers where they process and hold CC information for processing sales, they would need to save this data unencrypted. And, these servers wouldn't be available externally unless someone found a way through their security.

At some point, your CC info has to be stored as clear text.

For example, passwords would be stored as encrypted data. So, when you log in, your password would be encrypted using whatever encryption algorithm they have in place and that encrypted string would be validated against the password in the system.

2. If they encrypted all data in all databases, they would need to develop an encryption breaker just to read their data, which means there would exist an algorithm designed specifically to bypass their encryption security.

3. Internal DB data isn't normally encrypted. Companies rely on standard network security to prevent access to the data. The problem is that someone found a way around this.

4. If you're that concerned with data being stored as clear/plain text, then you shouldn't ever create an account on the Internet. All but your password is likely stored in the same fashion in each database.

I'd also like to note that Sony never said All CC info was taken, only that it was possible that CC information could have been obtained. Nor did they ever say that the data that was obtained was enough to use for fraudulent means.

hay2734d ago

You should wait for detailed official info not believing this bullshit all over the internet, protecting your CC and emails if needed.

just_sayin2734d ago

People need to relax. Sony will fix the problem. This isn't the first time stuff like this happend nor will it be the last.

OMGitzThatGuy2734d ago

Yeah it kinda is No one else has had their servers hacked, account credential leaked, and 1 week down due to hackers.
And it wont be the last cause Sony saves Account Info as Plaintext

jeeves862734d ago

Get back under the bridge, troll.

49erguy2734d ago

Can someone help me out? I canceled/changed my card, but as these sites are saying our address and email and stuff are still compromised. What can they do with that info? What's the worst case scenario? Still not clear on that.

Wolf8732734d ago

They can send you scam E-mail asking for personal info, don't give it out.

They can use your name and address to sign up for credit or services in your name, like Mobile service. If you get a service bill that you don't recognize, call the issuing company and have it settled.

Call the credit unions (TransUnion and Equifax, there's also a third but don't remember name though) and put a fraud alert on so no one can change your credit profile without you being alerted first.

That's all you can do. Just be on the lookout for suspicious activities.

SantistaUSA2734d ago (Edited 2734d ago )

Nothing you can do about your address, but about your email, just change your password and you are good to go.

@Wolf873 they would only be able to do those things if they have his social security number!

T3MPL3TON 2734d ago

Honestly, if you've canceled your card you're already all set. The rest of the information Sony, has is on the internet/in the phone book anyway. If you get random mail asking you to give up your information, discard it like you would junk email. In all honesty I'm not 100% sure anyone needs to even worry about their credit card numbers. Depending on the security used by Sony to protect these numbers the worst a hacker could do is simply steal your account.. not your money.. meaning they'd have control of your PSN not your LIFE. Losing your trophy progress is far less of a worry than losing hundreds/thousands to a criminal.

sikbeta2734d ago

Worst case, steal identity, but this is coming from hackers that dd stuff illegally and manipulate data not belonged to them, so what they wanna steal your identity? so it's no going to happen, well that's the only really bad thing that can happen to you, other stuff like scam and spam in your e-mail can be blocked, always remember, don't trust to any asking for you for your CC data, like password or so and your personal data via e-mail, that's it.

nevimkdojsem22734d ago

1. Cancelling your CC was a waste of time and effort - whenever you pay in a shop the shop assistant has more info about your credit card than Sony.
2. There hasn't been a single confirmed case of money theft as a result of the PSN security breach.
3. Even if there has been a fraudulent transaction, your bank can still cancel it within two weeks.
4. Your address? It's in the telephone directory along with millions of others.
5. Email account: your password isn't stored as a plaintext word but as its 'digest' (return value from a cryptographic hash function). You can't convert the digest back to the original password so even if you used the same password to PSN as to your email account there's no reason to worry.

+ Show (2) more repliesLast reply 2734d ago
Show all comments (40)
The story is too old to be commented.