Sony PlayStation Network hacked again by resetting user passwords

Sony PlayStation Network hacked again by resting user passwords
With Sony's PlayStation Network back online only a few days, attackers have breached the system for a third time. This time going for a vulnerability with the system's password reset.

(PhysOrg.com) -- Only a few days after Sony brought their PlayStation Network back on-line hackers have shown that the PSN is still vulnerable to attacks. This time around hackers have reset user account passwords by using their email address and date of birth.

News of this third attack first appeared on Nyleveia.com which warned users that their accounts are still not safe. According to Nyleveia.com “…the exploit involves a vulnerability in the reset form currently implemented, not properly verifying tokens”.

has since then blocked PSN login access to a number of its site, and the PSN password reset site has also been taken offline. The company has stated: “unfortunately this also means that those who are still trying to change their password via .com or Qriocity.com will be unable to do so for the time being.”

Sony went on to say, "in the meantime you will still be able to sign into PSN via your PlayStation 3 and PSP devices to connect to game services and view Trophy/Friends information."

According to Nyleveia.com website: “I would suggest that you secure your accounts now by creating a completely new that you will not use anywhere else, and switching your PSN account to use this new email.”

"You risk having your account stolen, when this hack becomes more public, if you do not make sure that your PSN account's email is one that cannot be affiliated with or otherwise traced to you."

It would seem that Sony has a lot more work ahead of them. Their customers are going to less likely believe them when they say that their network is now secure.


Explore further

Sony Playstation Network begins restoration of their online network (w/video)

More information: via Nyleveia.com

© 2010 PhysOrg.com

Citation: Sony PlayStation Network hacked again by resetting user passwords (2011, May 18) retrieved 19 October 2020 from https://phys.org/news/2011-05-sony-playstation-network-hacked-resetting.html
This document is subject to copyright. Apart from any fair dealing for the purpose of private study or research, no part may be reproduced without the written permission. The content is provided for information purposes only.
0 shares

Feedback to editors

User comments