Sony Fix Email / Password ‘Exploit’

Patrick Seybold, Senior Director of Corporate Communications & Social Media, has commented on the PlayStation Blog regarding today’s email / password exploit that we reported on earlier.

“We temporarily took down the PSN and Qriocity password reset page,” he said. “Contrary to some reports, there was no hack involved. In the process of resetting of passwords there was a URL exploit that we have subsequently fixed.”

– ARTICLE CONTINUES BELOW –

Fixed, thankfully, mostly due to diligent white hat individuals who told SCEE straight away this morning.

“Consumers who haven’t reset their passwords for PSN are still encouraged to do so directly on their PS3. Otherwise, they can continue to do so via the website as soon as we bring that site back up,” said Seybold.

The ability to change your details on the web is still unavailable at the time of publication.

– PAGE CONTINUES BELOW –

30 Comments

  1. If it weren’t for the internet I wouldn’t of ever known about this!

    And I wonder how many people broke down into moaning and worrying about all this!

    • If it wasn’t for the internet, this problem would never have existed.

      • Touche!

      • If it wasn’t for the Internet, there would be no playstation network to get hacked and taken down, and consequently there would be no password reset “exploit”. Hmmmmmmm interesting…

      • At least now we know what needs to be done to get all the network issues fixed!

      • If it wasn’t for the internet, I’d still be checking under bus stop seats for grotty magazines.

    • If it wasn’t for the internet we wouldn’t be able visit TSA to discuss the possibility of the whole thing never having happened..o.O

    • Not worrying, as it would still alert ou through e-mail that your password has been changed. But moaning as e-mail just arrived this morning to reset my password from when PSN went back up. And phoning them does no good as I just get cut off when it tells me I’m being put through to someone.
      Only reason I’m now getting pissed is because my HDD had to do a database rebuild, so now none of my saves or PSN games belong to me as I need to sign in to re-activate the account properly.

      • Argh,eventually get someone on the phone, and they can’t do anything till the server is back up. flaps

    • Well if it weren’t for the internet gaming would be BETTER! LoL

  2. Ok so they weren’t hacked – they were exploited…. not that that’s completely reassuring but i’m glad they’ve fixed it quickly.

  3. What exactly is a “URL exploit”?

    • Who knows but it’s fixed now.

    • the url was like playstation.com/area/123456789 etc – from what i understand the 123456789 etc could be determined from an email address and dob etc

    • mate having your url exploited is da shizzle oops sorry wrong url….

  4. Not a big problem at all. it’s just a small loophole and I doubt anyone has been affected by this yet.

  5. Quick fix SONY! Something wrong with you ? :O

  6. Not a hack but a schoolboy error, something someone could probably get away with doing during their first day at work, before receiving a bollocking & never doing it again.

  7. Nic to hear this has been fixed.

    Lens off truth have shown exactly how this was done, its a bit more complicated than just going to the password link and entering an e-mail address and date off birth.

    There was a bit off jiggery pokery involved to make it work and the vast majority off people out there wouldnt be able to do it. Not clever from sony considering whats happened but luckily they reacted extremely quickly and would appear no harm has been done.

  8. Wasn’t a hack at all really, was a stupid coding mistake. I assume the reset password accidentally leaked the key for the unique URL for resetting passwords or something.
    To be honest, that is *exactly* what those security professionals are meant to be looking for.

    Oh well, this time hackers in the white hats were on the case. Could have been a lot worse…

  9. its good to have white hats on board.

  10. Aren’t white hats condoms?

    • Only in the strangest of hacking analogies…

      White Hats and Black Hats are terms inherited from old westerns, where the good cowboys always wore white hats, and the baddies black hats, making them simple to distinguish.

      • Interseting bit of trivia. I love westerns, but was ignorant about the hat reference.
        c.eastwood wore black & j.wayne wore both, depending on his mood i guess.

      • Mind-blowing!
        I now want to watch an old Western to see

Comments are now closed for this post.