Hackers breach Sony's password reset system

Powered by SC Magazine
 

Reset page closed over hacker fears.

Sony's PlayStation Network is under fire again, with a new security breach hitting the beleaguered company.

Just days after the network was resurrected following a massive data breach, there is mounting evidence that hackers have circumvented protections put in place via a password reset page.

According to the Nyleveia gaming website, hackers have discovered an exploit that allows them to change user passwords using only a PlayStation Network account email and date of birth - information which could have been harvested during the recent attack.

“A new hack is currently doing the rounds in dark corners of the internet that allows the attacker the ability to change your password using only your account’s email and date of birth,” the website reported. “Without any shadow of a doubt this is real.”

The website suggested that users should move to secure their accounts by creating a completely new email, that is used exclusively for the PlayStation Network, and switching PSN account details to use this new email.

The latest security nightmare has forced Sony to take several sites offline, including the password reset page, locking out users who have forgotten their password and are yet to change their account details since the security breach.

"Those who are still trying to change their password via Playstation.com or Qriocity.com will be unable to do so for the time being," the company said in a statement. "This is due to essential maintenance and at present it is unclear how long this will take."

"In the meantime you will still be able to sign into PSN via your PlayStation 3 and PSP devices to connect to game services and view Trophy/Friends information."

Copyright © PC Pro, Dennis Publishing


Hackers breach Sony's password reset system
 
 
 
Top Stories
Beyond ACORN: Cracking the infosec skills nut
[Blog post] Could the Government's cybercrime focus be a catalyst for change?
 
The iTnews Benchmark Awards
Meet the best of the best.
 
Telstra hands over copper, HFC in new $11bn NBN deal
Value of 2011 deal remains intact.
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest Comments
Polls
Who do you trust most to protect your private data?







   |   View results
Your bank
  38%
 
Your insurance company
  4%
 
A technology company (Google, Facebook et al)
  8%
 
Your telco, ISP or utility
  8%
 
A retailer (Coles, Woolworths et al)
  3%
 
A Federal Government agency (ATO, Centrelink etc)
  19%
 
An Australian law enforcement agency (AFP, ASIO et al)
  14%
 
A State Government agency (Health dept, etc)
  6%
TOTAL VOTES: 1878

Vote
Do you support the abolition of the Office of the Information Commissioner?