PSN Up, And Then Down Again 282
RdeCourtney writes "The PlayStation Network is down again. Sony had originally enabled passwords to be reset onscreen simply by entering an email address and date of birth. Whoever has the data from Sony, could, in theory, then reset any of the captured users accounts simply by entering the details they stole."
Its just sony (Score:5, Interesting)
that is TOTALLY leaving aside how they screwed their customers en large in star wars galaxies, at the cost of screwing up the game. they had the habit of routinely changing skill properties in order to force people to drop entire skill trees and level others so that they would keep paying - spent 2 months of your play time building up a character ? well - come next patch, you had to ditch on average 30% of your character and level another tree to remain viable. as long as you kept paying, it was all ok by soe.
sony deserves whatever is shoved up their ass.
Re:That's some fine police work, boys (Score:5, Interesting)
Most of those email accounts probably used the same passwords as the stolen sony accounts.
At this point sony should require users to create new accounts and import trophies from the old accounts if you give the old password. This would mean at worst someone could get a bunch of unearned trophies, instead of access to an account with which they could buy something.
The value of paying for something (Score:4, Interesting)
The revenue has allowed them to build a better network and keep it up. I'm not claiming they too couldn't be hacked, just highly doubt it would be to this level.
Re:Verification data (Score:3, Interesting)
To reset your PlayStation(R)Network password, please click on the link below. This link will expire in 24 hours from the time that it was sent. The link will direct you to a PlayStation(R)Network web page and allow you to enter and confirm your new password.
https://store.playstation.com/accounts/security/resetPassword.action?token=-- [playstation.com]
Obviously I removed my token.
Re:Summary Wrong, PSN is Up (Score:2, Interesting)
Pretty much this. The key generation scheme was cracked so people were getting confirmation emails to change their passwords and then getting mails notifying them that the password was changed successfully. These were on non-compromised emails.