The Register® — Biting the hand that feeds IT

Feeds

Sony network ransacked in huge brute-force attack

93,000 accounts broken into

By John Leyden, 12th October 2011
  • print
  • alert

Agentless Backup is Not a Myth

Sony has warned users against a massive bruteforce attack against PlayStation and Sony network accounts.

The attack – which used password and user ID combinations from an unidentified third-party source – succeeded in compromising 60,000 PlayStation Network and 33,000 Sony Online Entertainment network accounts. These accounts have been locked and passwords reset.

Credit card information is not stored on the dashboard of Sony accounts but it might have been possible that unauthorised charges were made against the wallets held on compromised accounts. Sony has promised to refund any such losses, as explained in a statement by Philip Reitinger, senior vice president and chief information security officer at Sony Group, on the PlayStation blog here.

Both the motive for the latest attack against Sony network users and the identity of the perpetrator(s) remains unclear.

Sony shut down its PlayStation Network in April in the aftermath of a far more damaging hack attack. The service wasn't restored until a month later. Personal information on 77 million account-holders was exposed as a result of the April PlayStation hack. Details including names, addresses, passwords and purchase histories was exposed by the megahack.

Sony was widely criticised for its handling of the incident, one of the biggest data breach incident (by volume of records) in history. ®

Steps to Take Before Choosing a Business Continuity Partner

COMMENTS

House Rules Send Corrections
All Reader Comments (58)
Highly Rated
Adam 60

Not Sony's Fault

So, the accounts were compromised because people re-used compromised login details, or had easy to guess passwords?

The fault this time lies entirely with the end user.

The sad thing is, given the choice between learning to increase their on-line security or blaming someone else (Sony), I know where the majority of 'victims' will fall.

4
0
Thomas 4

Phew

Thank god they installed that chief information security officer after that last attack, otherwise they'd have no-one to fire over this one.

3
0
Atonnis

The motive?

It's to steal information, use accounts for spamming and phishing, and possibly there's a small smidgeon of 'we can f--k you up whenever we want, Sony' attitude mixed in.

But thievery is the primary motive. It always is, no matter what flowery bullsh*t is used to declare some sort of 'l33t' status.

4
1

More from The Register

breaking news
Number of cops abusing Police National Computer access on the rise
Only a telegram from the Queen can get you off it
135
breaking news
NSA PRISM snoop-gate: Won't someone think of the children, wails Apple
10,000 things probed, mostly about missing kids, Alzheimer patients, we're told
96
Flash flaw potentially makes every webcam or laptop a PEEPHOLE
But it's a Google problem - Chrome only, insists Adobe
60
Internet fraud still stings suckers
Australians twice as gullible as Americans
36
breaking news
NSA PRISM-gate: Relax, GCHQ spooks 'keep us safe', says Cameron
Whatever they are up to, it's all above board, we're told
90
breaking news
Yahoo! joins! rivals! in! PRISM! data! request! admission!
Keep calm and carry on using American tech firms, folks
41
PRISM snitch claims NSA hacked Chinese targets since 2009
Snowden suddenly looks safer in Hong Kong after revelations
33
breaking news
US chief spook: Look, we only want to spy on 6.66 BEELLLION of you
Americans assured they are not in the NSA's sights
68
Speech-to-text drives motorists to distraction
Will talking to you mean I crash into that car up ahead, Siri?
30
DHS warns of vulns in hospital medical equipment
Has your doctor's anasthesia machine been hacked?
17