Although the PSN’s rudimentary services areÂ back up, it seems like Sony’s online woes are far from over. Service resumed on Sunday last week, but a new bit of online shenanigans are causing issues for some PSN users.
An exploit has been found on the PSN’s password reset that allows attackers to reset passwords using just a username and date of birth; information that was compromised in the bona-fide hack.
Sony’s done the right thing, quickly this time, taking its PSN password reset site and all associated sites down until the exploit is patched up.”Unfortunately this also means that those who are still trying to change their password via Playstation.com or Qriocity.com will be unable to do so for the time being,” Sony said. “This is due to essential maintenance and at present it is unclear how long this will take.”In the meantime you will still be able to sign into PSN via your PlayStation 3 and PSP devices to connect to game services and view Trophy/Friends information.”
Some sites are reporting that the PSN has been hacked again, but this clearly isn’t the case, as the exploit is confined to a website only, as clarified by SCEE’s Nick Caplin.Â â€œWe temporarily took down the PSN and Qriocity password reset page. Contrary to some reports, there was no hack involved. In the process of resetting of passwords there was a URL exploit that we have subsequently fixed.Consumers who haven’t reset their passwords for PSN are still encouraged to do so directly on their PS3. Otherwise, they can continue to do so via the website as soon as we bring that site back up.â€
This does however put Sony’s apparently lackadaisical view of network security under the spotlight once again, making it even harder for users to trust the company with their private and personal information.
Last Updated: May 19, 2011