About a month later and Sony's PlayStation Network still isn't fully restored

It will be a month tomorrow since Sony's PlayStation Network was fully operational, and the popular gaming site is still beset by troubles.

The latest is a URL exploit that took the network offline for awhile Wednesday until it was fixed, Sony says in its PlayStation Blog, which has been its main forum for detailing the extent of the attack that compromised personal information on more than 100 million customers and led to Sony shutting the network down to rebuild it.

TIMELINE: PlayStation Network hack

Sony's explanation of the problem was vague, but discussion forums say a vulnerability would allow attackers who knew customer email addresses and birthdates to take over their accounts via PlayStation Network's password reset page.

Sony is requiring all its customers to reset their passwords after the breach that led to the shutdown. That process hasn't been going smoothly because wait times for the network to respond to reset requests have been long. Frustrated customers who click more than once are sending multiple requests, which not only clogs the system, but can, after three tries, lock them out.

The company had been turning the network back on by stages.

Meanwhile, a group calling itself PH4N70M Hacking Team is claiming responsibility for the original hack, offering some details about what it may have done to breach the network.

"The PSN was comprised of multiple forwarding servers. When my team went in, we found an authorization server (Codenamed auth.sony). This server had no encryption, no DDoS protection was in place. No load balancing," according to a statement posted on The Hacking Network sourced to the founder of the team, who was not identified by name.

The group apparently has some link to the international hactivist group Anonymous, based on the statement. "The key players in PH4N70M (Phantom) include an exploiter (TH0R), Xik, and several others including the operation payback collaborator named Wolfy. The rest of the team will remain hidden for now," the statement says.

Operation Payback was the name Anonymous gave to its effort to shut down PlayStation Network via a DDoS attack in retaliation for legal action against a Sony PlayStation customer who posted directions online for running open source games on the devices.

Anonymous itself has been having a hard time since a faction within it has posted names of members and its public spokesperson has walked away from the group.

Read more about wide area network in Network World's Wide Area Network section.

Join the PC World newsletter!

Error: Please check your email address.

Tags Sony PlayStation Networksecuritylegaldata breachsonycybercrime

Keep up with the latest tech news, reviews and previews by subscribing to the Good Gear Guide newsletter.

Tim Greene

Network World

Most Popular Reviews

Follow Us

Best Deals on GoodGearGuide

Shopping.com

Latest News Articles

Resources

GGG Evaluation Team

Kathy Cassidy

STYLISTIC Q702

First impression on unpacking the Q702 test unit was the solid feel and clean, minimalist styling.

Anthony Grifoni

STYLISTIC Q572

For work use, Microsoft Word and Excel programs pre-installed on the device are adequate for preparing short documents.

Steph Mundell

LIFEBOOK UH574

The Fujitsu LifeBook UH574 allowed for great mobility without being obnoxiously heavy or clunky. Its twelve hours of battery life did not disappoint.

Andrew Mitsi

STYLISTIC Q702

The screen was particularly good. It is bright and visible from most angles, however heat is an issue, particularly around the Windows button on the front, and on the back where the battery housing is located.

Simon Harriott

STYLISTIC Q702

My first impression after unboxing the Q702 is that it is a nice looking unit. Styling is somewhat minimalist but very effective. The tablet part, once detached, has a nice weight, and no buttons or switches are located in awkward or intrusive positions.

Latest Jobs

Shopping.com

Don’t have an account? Sign up here

Don't have an account? Sign up now

Forgot password?