Welcome, Unregistered.

If this is your first visit, be sure to check out the FAQ by clicking the link above. You may have to register before you can post: click the register link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below.

Reply
Old 30-Apr-2011, 18:54   #326
deathindustrial
Member
 
Join Date: Jan 2007
Location: Soviet Kanuckistan
Posts: 593
Default

Quote:
Originally Posted by RobertR1 View Post
lol. Quoted so this gem doesn't get edited.
Why would I edit it? No need to make a personal slight just because you don't agree with me.

Looking at the Energy And Commerce Committee's site, they are definitely pushing the news that they have mailed Sony:

http://energycommerce.house.gov/news/letters.aspx
http://energycommerce.house.gov/issues.aspx?IID=5

Via Google I found a copy of a letter they were supposed to have sent Epsilon about their breach earlier this month except there is no mention of it anywhere I can find on the above site. I am having to assume it either never actually got sent or they have decided to hush up about it after the fact:

http://bono.house.gov/UploadedFiles/...ata_Breach.pdf

Obviously not a big enough sample size to make any assertions but it is strange that Epsilon / Alliance Data Systems has all but vanished from the system. I also could not find anything about the response that was supposed to have come by April 18th. . .

Cheers
__________________
Couch CO-OP FTW!
deathindustrial is offline   Reply With Quote
Old 30-Apr-2011, 19:17   #327
-tkf-
Regular
 
Join Date: Sep 2002
Posts: 5,247
Default

Quote:
Originally Posted by RobertR1 View Post
Pretty much all of it. When something like this happens, the top of the org chart is ultimately responsible. The PS3 is under the NPS division and Kaz is on top of that org chart. You can't roll out a chump for the firing range.

If he's going to be fielding questions, he could/should bring a security specialist with him but if this is a canned speech, then no need. Btw, this is what he should have done a day or two after knowing what had occured.
He better show up with a humble attitude and not try to make anything look like it wasnīt their fault.
__________________
Batteries NOT included with the XBOX One Controllers: http://techland.time.com/2013/07/29/...ore-expensive/
2nd hand market talk here: http://forum.beyond3d.com/showthread.php?t=59311
-tkf- is online now   Reply With Quote
Old 30-Apr-2011, 19:21   #328
bkilian
Senior Member
 
Join Date: Apr 2006
Posts: 1,539
Default

Quote:
Originally Posted by Carl B View Post
I don't know that Archie will reply to this directly, but if you go through older posts, you'll have your answer, such as it were. The rest of your post of course stands, but with the caveat that your "then" scenario in the if/then isn't necessarily applicable. In any case, when it comes to Sony and/or console-related news, I would always suggest taking Archie's posts as a value-add to the dialogue.
I looked back, and I stand by my statement... I work for MS, in the xbox org, and even I only have the vaguest idea of the internals of Live. Any statements I made about it would have almost the same chance of being right as anyone else who worked in the industry. (Now the messenger service internals I could talk about, but that wouldn't really help )
bkilian is offline   Reply With Quote
Old 30-Apr-2011, 19:54   #329
KongRudi
Member
 
Join Date: Dec 2006
Posts: 304
Default

Quote:
Originally Posted by deathindustrial View Post
Call me cynical but I would bet that letter is more the result of protectionist lobbying efforts (*cough Microsoft*) as opposed to any meaningful interest from the US government about consumer welfare.

Cheers
Microsoft sit in a glasshouse of their own, and they would probably like nothing more than to have people feel safe and secure when shopping and gaming online, so I don't think it'd be very likely for them to lobby against Sony here, sinceany new laws and similar would also affect themselves in the end.

Last edited by KongRudi; 30-Apr-2011 at 20:01.
KongRudi is offline   Reply With Quote
Old 30-Apr-2011, 22:47   #330
Carl B
Friends call me xbd
 
Join Date: Feb 2005
Posts: 6,309
Default

Quote:
Originally Posted by bkilian View Post
I looked back, and I stand by my statement... I work for MS, in the xbox org, and even I only have the vaguest idea of the internals of Live. Any statements I made about it would have almost the same chance of being right as anyone else who worked in the industry. (Now the messenger service internals I could talk about, but that wouldn't really help )
I'm not saying you shouldn't stand by your statement, and I think I stood in support of your premise to begin with. I'm just saying that your initial query in that statement was followed by a presumed outcome that might have limited applicability to the individual you were asking it from. But I will admit that I am not in a position to affirm or speak for anyone on the matter.

For me it's more like what you just said regarding your involvement with XBox; now, were there a story on MS, and you chimed in with a fairly strong take on it, then knowing you are there and also that you likely would not plant a flag on an issue if you didn't feel adequately informed in your own right, then I would be less concerned with whether you worked in said division or not and simply more inclined to take your own confidence of knowledge in your position as sufficient to make me note your view. That is due to my own regard for your integrity and perception of your 'facts-required-before-speaking-with-authority' quotient. If you weren't yourself confident, you probably wouldn't say anything, right? And of course even moreso in situations like this, if you were asked to lend your official credentials to the matter after having spoken out on the subject, you likely would demure, since a PR firestorm like this would likely not benefit from your unsanctioned, unofficial participation providing title and position where the inevitable thread-linking and cross-talk would emerge across the net as a result.

I have that above respect for knowledge and insight towards Archie, given his past contributions, the areas in which he has shown particular expertise, and the particular glimpses into his official capacities he has in the past provided or shared on the forum. So it's true, support/evidence for his statements has not been provided, and he may be incorrect on the matter, but his entering the thread with specific color on the encryption situation is enough for me to say: ok, maybe it's this then.
__________________
Somebody set up us the bomb.

Last edited by Carl B; 30-Apr-2011 at 23:07.
Carl B is offline   Reply With Quote
Old 30-Apr-2011, 23:47   #331
goonergaz
Senior Member
 
Join Date: Jun 2005
Posts: 1,065
Default

Quote:
Originally Posted by AlphaWolf View Post
either way its pretty hard to try and pass this off as "Geohotz's fault", his arrogance (and joy) on the matter is immaterial.
I'm curious...do you think this would have happened if he hadn't hacked the PS3?
goonergaz is offline   Reply With Quote
Old 01-May-2011, 00:00   #332
digitalwanderer
Dangerously Mirthful
 
Join Date: Feb 2002
Location: Winfield, IN USA
Posts: 15,339
Default

Quote:
Originally Posted by goonergaz View Post
I'm curious...do you think this would have happened if he hadn't hacked the PS3?
Yes, because someone else would have.
digitalwanderer is offline   Reply With Quote
Old 01-May-2011, 00:16   #333
goonergaz
Senior Member
 
Join Date: Jun 2005
Posts: 1,065
Default

Quote:
Originally Posted by digitalwanderer View Post
Yes, because someone else would have.
well they hadn't up until now...I'm sure it's just a coincidence though
goonergaz is offline   Reply With Quote
Old 01-May-2011, 01:29   #334
AlphaWolf
Specious Misanthrope
 
Join Date: May 2003
Location: Treading Water
Posts: 8,121
Default

Quote:
Originally Posted by goonergaz View Post
well they hadn't up until now...I'm sure it's just a coincidence though
You mean they didn't tell you about it up till now. Criminal hacking is big business, do you think they are twiddling their thumbs while waiting around for some home brew guy to crack stuff for them?

Is it possible that what Geohotz did offered an opportunity? Yes. Is it possible that the Geohotz hack had nothing to do with, yes. Is he a convenient target for people looking to blame someone other than Sony? Also yes.

There's no question in my mind this would have happened with or without Geohotz, the timing may have changed, but if anything Geohotz releasing his info on the net should have made it very clear to Sony that the PS3 wasn't secure months ago and they should have stepped up efforts to secure PSN if the PS3 was supposed to be their lynchpin.

I doubt we'll ever know what really went down at Sony, but it didn't go right and it's going to be an expensive mistake. Governments are lining up to grill Sony and I suspect the class action suits are going to follow.
AlphaWolf is offline   Reply With Quote
Old 01-May-2011, 01:59   #335
bkilian
Senior Member
 
Join Date: Apr 2006
Posts: 1,539
Default

Quote:
Originally Posted by Carl B View Post
I'm not saying you shouldn't stand by your statement, and I think I stood in support of your premise to begin with. I'm just saying that your initial query in that statement was followed by a presumed outcome that might have limited applicability to the individual you were asking it from. But I will admit that I am not in a position to affirm or speak for anyone on the matter.

For me it's more like what you just said regarding your involvement with XBox; now, were there a story on MS, and you chimed in with a fairly strong take on it, then knowing you are there and also that you likely would not plant a flag on an issue if you didn't feel adequately informed in your own right, then I would be less concerned with whether you worked in said division or not and simply more inclined to take your own confidence of knowledge in your position as sufficient to make me note your view. That is due to my own regard for your integrity and perception of your 'facts-required-before-speaking-with-authority' quotient. If you weren't yourself confident, you probably wouldn't say anything, right? And of course even moreso in situations like this, if you were asked to lend your official credentials to the matter after having spoken out on the subject, you likely would demure, since a PR firestorm like this would likely not benefit from your unsanctioned, unofficial participation providing title and position where the inevitable thread-linking and cross-talk would emerge across the net as a result.

I have that above respect for knowledge and insight towards Archie, given his past contributions, the areas in which he has shown particular expertise, and the particular glimpses into his official capacities he has in the past provided or shared on the forum. So it's true, support/evidence for his statements has not been provided, and he may be incorrect on the matter, but his entering the thread with specific color on the encryption situation is enough for me to say: ok, maybe it's this then.
Well put, point taken.
bkilian is offline   Reply With Quote
Old 01-May-2011, 05:20   #336
minimoke
Member
 
Join Date: Jun 2008
Posts: 129
Default

Live Video of the Sony press conference here:

http://www.irwebcasting.com/live/110501/02/index.html
minimoke is offline   Reply With Quote
Old 01-May-2011, 05:52   #337
KongRudi
Member
 
Join Date: Dec 2006
Posts: 304
Default

I assume JST is Japan (GMT+9) - 10 minutes?
KongRudi is offline   Reply With Quote
Old 01-May-2011, 06:08   #338
Xenus
Senior Member
 
Join Date: Nov 2004
Location: Ohio
Posts: 1,316
Default

Yup it has started
Xenus is offline   Reply With Quote
Old 01-May-2011, 06:16   #339
Xenus
Senior Member
 
Join Date: Nov 2004
Location: Ohio
Posts: 1,316
Default

They didn't have a chief security officer for the network that's odd.
Xenus is offline   Reply With Quote
Old 01-May-2011, 06:23   #340
deathindustrial
Member
 
Join Date: Jan 2007
Location: Soviet Kanuckistan
Posts: 593
Default

Wow, did they really just try to use Anonymous protesting their brick and mortars as an excuse for the breach?
__________________
Couch CO-OP FTW!
deathindustrial is offline   Reply With Quote
Old 01-May-2011, 06:26   #341
deathindustrial
Member
 
Join Date: Jan 2007
Location: Soviet Kanuckistan
Posts: 593
Default

10 million credit cards on account apparently. So that kind of puts the number of PSN accounts versus actual users in perspective.

Cheers
__________________
Couch CO-OP FTW!
deathindustrial is offline   Reply With Quote
Old 01-May-2011, 06:30   #342
Xenus
Senior Member
 
Join Date: Nov 2004
Location: Ohio
Posts: 1,316
Default

35 million users.

And no they didn't they said it was probably not related but they were talking about anon attacking their servers with DDOS, publishing info on high ranking members including family and children and their planned sit in protest.
Xenus is offline   Reply With Quote
Old 01-May-2011, 06:38   #343
RobertR1
Regular
 
Join Date: Nov 2005
Posts: 5,209
Default

lol they got exploited by a known vulnerability and management didn't know they were not patched. (as per translator)

Gotta make it hard for PR to brag about PSN accounts now that Kaz admitted duplicated and said only 10mil cards are registered.
__________________
Hall of fame thread: http://forum.beyond3d.com/showthread.php?t=50668
RobertR1 is offline   Reply With Quote
Old 01-May-2011, 06:41   #344
Xenus
Senior Member
 
Join Date: Nov 2004
Location: Ohio
Posts: 1,316
Default

I'm surprised you could get that out of what she is saying. Male translator speaks natural english. Female translator though it's hard to tell what she is trying to say half of the time.
Xenus is offline   Reply With Quote
Old 01-May-2011, 06:43   #345
deathindustrial
Member
 
Join Date: Jan 2007
Location: Soviet Kanuckistan
Posts: 593
Default

Quote:
Originally Posted by Xenus View Post
. . . publishing info on high ranking members including family and children and their planned sit in protest.
Which has what exactly to do with with the data breach? Nothing, just another pass the buck attempt by Sony. This press conference is not the place for that.

My hope was that Sony would own up to their responsibilities and try to move forward, not continue with the head in sand approach a la Gamasutra's article.

Cheers
__________________
Couch CO-OP FTW!
deathindustrial is offline   Reply With Quote
Old 01-May-2011, 06:46   #346
Xenus
Senior Member
 
Join Date: Nov 2004
Location: Ohio
Posts: 1,316
Default

Death it was another breach of security that's all it was and they spent all of 30 secs to minute of so far a 45 min conference on it. They were not passing the buck they were just giving a brief overview of the other breaches/service interruptions there were.
Xenus is offline   Reply With Quote
Old 01-May-2011, 06:50   #347
minimoke
Member
 
Join Date: Jun 2008
Posts: 129
Default

PSN Passwords were not encrypted!!!
minimoke is offline   Reply With Quote
Old 01-May-2011, 06:52   #348
AzBat
Agent of the Bat
 
Join Date: Apr 2002
Location: Alma, AR
Posts: 4,471
Default

Props to Hirai for profusely apologizing multiple multiple times. Also, looks like they will require 1 of 2 methods to reset passwords. 1) They will be sending password reactivation to the verified email addresses only. 2) For those resetting their passwords on their consoles, they will only allow passwords to be reset via only the original PS3 systems that created the accounts. That should be sufficient.

Other than that one huge PR blunder. Still can't believe waited a week to tell customers. It should have happened the day the knew of the intrusion or the day the shut down the network. Also, still can't believe that passwords weren't encrypted. Hopefully they learned a lesson. Having a dedicated security officer should help.

Tommy McClain
AzBat is offline   Reply With Quote
Old 01-May-2011, 06:53   #349
Xenus
Senior Member
 
Join Date: Nov 2004
Location: Ohio
Posts: 1,316
Default

I'm not sure she said that why couldn't it be the guy translator at that time. She bumbled around and I think ended up saying the same thing in the FAQ. But there were so many uhs and I think and incomprehensible words strung together that I have no idea what her answer was at all.
Xenus is offline   Reply With Quote
Old 01-May-2011, 06:56   #350
-tkf-
Regular
 
Join Date: Sep 2002
Posts: 5,247
Default

@Death

So far i understand that Sony will enchance security (doh) and they will comply with requirements from the "different" regions. Charges that follow because of Credit Replacements would be covered in some form (thats how i understand it).

No head in the sand imho, seems humble enough. And itīs pretty clear why, they mention Tablets and NGP both heavily tied to network services.

When getting online with PSN (when restarted) users will be asked to provide a new password.

Fire the female translator!
__________________
Batteries NOT included with the XBOX One Controllers: http://techland.time.com/2013/07/29/...ore-expensive/
2nd hand market talk here: http://forum.beyond3d.com/showthread.php?t=59311
-tkf- is online now   Reply With Quote

Reply

Tags
i blame sony, playstation, ps3, psn

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT +1. The time now is 10:12.


Powered by vBulletin® Version 3.8.6
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.