SAN FRANCISCO - the efforts of Sony for its PlayStation Network (PSN) have stumbled after the company discovered a fault hackers could exploit when it comes to password reset.
Sony temporarily disabled NHP and Qriocity music streaming password reset pages to fix a vulnerability in a system that was fair to resume walking after a cyber attack that resulted in it being closed for weeks.
"We have temporarily taken on the PSN and Qriocity password resets the page" Sony spokesman Patrick Seybold said in an update posted on the PlayStation blog.
"Contrary to some reports, is there any hack involved," he said. "In the password reset process there was an exploit URL that we subsequently fixed."
Details of the exploit was not disclosed, but an open door would have been had been left ajar for hackers to change password of the user if they knew the date birth and the email address associated with an account.
"Consumers who do not have reset their password for PSN are always encouraged to do so directly on their PS3", said Seybold. "Otherwise, they can continue to do so via the Web site as soon as bring us this site back up."
NHP connects consoles PlayStation 3 (PS3) for online games, movies and more.
Sony Sunday began a "progressive restoration" of the network services that came under attacks by pirates in one of the violations of larger data since the advent of the Internet.
Cyber thieves have stolen personal data included names, passwords, and addresses of over 100 million accounts on PSN and Sony Online Entertainment services.
Sony has said that it cannot be ruled out that millions of credit card numbers were compromised.
Sony closes the NHP and Qriocity April 20, after that its San Diego data center has been hacked - but he did not reveal the violation until 26 April.
Entertainment and electronics giant began to reinstate the services on Sunday and promised that the defences had been cured.
The multinational Japanese has estimated that the cost of $ 1 billion farm cyber attack.
Sony CEO Howard Stringer, speaking for the first time on the crisis Tuesday, said of the private information protection was a "process without end" and he did not know if anyone could be "100% secure."
No comments:
Post a Comment