Sony Detects Massive Attempted Network Breach – 93,000 PSN Accounts Affected

PlayStation network security woes are in the news again as the PSN has weathered a massive network breach. This time Sony was not caught off guard, detecting a massive set of sign-in IDs and passwords, they acted immediately – warning users to secure log-in details and locking affected accounts. 93,000 accounts globally were compromised and immediately locked.  Only a small number showed activity after being locked. It is believed user account data used during the attack was received outside the network.

Sony Information Security Officer Philip Reitinger addressed the incident on the PS Blog and claimed critical information such as Credit Card numbers were not compromised. Here is his full statement below:

We want to let you know that we have detected attempts on Sony Entertainment Network, PlayStation Network and Sony Online Entertainment (“Networks”) services to test a massive set of sign-in IDs and passwords against our network database. These attempts appear to include a large amount of data obtained from one or more compromised lists from other companies, sites or other sources. In this case, given that the data tested against our network consisted of sign-in ID-password pairs, and that the overwhelming majority of the pairs resulted in failed matching attempts, it is likely the data came from another source and not from our Networks. We have taken steps to mitigate the activity.

Less than one tenth of one percent (0.1%) of our PSN, SEN and SOE audience may have been affected. There were approximately 93,000 accounts globally (PSN/SEN: approximately 60,000 accounts; SOE: approximately 33,000) where the attempts succeeded in verifying those accounts’ valid sign-in IDs and passwords, and we have temporarily locked these accounts. Only a small fraction of these 93,000 accounts showed additional activity prior to being locked. We are currently reviewing those accounts for unauthorized access, and will provide more updates as we have them. Please note, if you have a credit card associated with your account, your credit card number is not at risk. We will work with any users whom we confirm have had unauthorized purchases made to restore amounts in the PSN/SEN or SOE wallet.

As a preventative measure, we are requiring secure password resets for those PSN/SEN accounts that had both a sign-in ID and password match through this attempt. If you are in the small group of PSN/SEN users who may have been affected, you will receive an email from us at the address associated with your account that will prompt you to reset your password.

Similarly, the SOE accounts that were matched have been temporarily turned off. If you are among the small group of affected SOE customers, you will receive an email from us at the address associated with your account that will advise you on next steps in order to validate your account credentials and have your account turned back on.

We want to take this opportunity to remind our consumers about the increasingly common threat of fraudulent activity online, as well as the importance of having a strong password and having a username/password combination that is not associated with other online services or sites. We encourage you to choose unique, hard-to-guess passwords and always look for unusual activity in your account.

At this point I have to applaud Sony for acting so quickly. Hopefully this issue will not get larger and measures will be taken to prevent any similar attack. As a gamer with an online account on both PSN and Xbox Live I have learned to be careful with how I make my online console purchases. We will keep you informed as more details come in.

Please Recommend RipTen on Facebook

TAGS: , , , , , , ,

Related Articles

  • http://www.fanclubmutu.com/2011/10/10/its-official-you-can-watch-your-youtube-music-videos-on-your-nintendo-3ds/ R4

    SOOOOO Disappointing.  Both disappointed in the hackers that just keep attacking, as well as Sony for being unable to really make me (all of us) feel secure enough to actually put my card details in my account and make purchases!  I would recommend everyone uses gift cards or PSN Vouchers rather, to make any purchases!  Do NOT put your CC info in to your account.

  • Garrett Hartman

    I completely understand your pain. A few years ago a couple of my Xbox live friends had their accounts compromised so since then I have NEVER attached a credit card to either my Live or PSN accounts. It’s been all points and vouchers for years now.

  • Karenb4

    Sony, Please get your shit together!

  • Anonymous

    From what I read… it seems someone had a big ol list of names/pwords and went to town to see what ones would allow them to log in. Sony noticed this and blocked them out, asking each account to reset their passwords. That’s hardly anything on scale of the PSN of last spring.

  • Matthew Fusco

    And this is what you get for a free service.  Shit security.  I would much rather pay the money for XBOX Live than PSN.

    Everyone will say “But the Playstation 3 is free!!!” and like I stated, you get what you pay for. And for people who dear to even think that the PSN and the PS3 dashboard is better than the XBOX, then you are truly an idiot.

    I’ve never seen something take so long to just go through system menus. XOBX is so much better. Simply put.

  • Dave Oshry

    You’ve got to be fucking kidding me.

  • Gamer91

    Wow a lot of you people are fkking retards. Sony didn’t get hacked again. A source stole IDs/passwords from ANOTHER source and tried using that information on the PSN. If anything, they might just do the same exact thing to Xbox Live (in fact this DID happen to Xbox Live when LulzSec released a massive torrent of sign in information gathered from other websites). It would help if you dumbasses actually READ properly.