Sony PlayStation Network Outage - Day 5
The Sony PlayStation Network and Qriocity service have been down since Wednesday the 20th. Sony is still working on bringing them back online. Sony is communicating regularly on this - you can find their original and current updates here:
http://blog.us.playstation.com/2011/04/22/update-on-playstation-network-qriocity-services/
and
http://blog.us.playstation.com/2011/04/25/psn-update/
Reading between the lines, they seem to be following the methodology for Incident Response, commonly phrased in these steps that I learned in SEC504:
- Preparation
- Identification
- Containment
- Eradication
- Recovery
- Lessons Learned
Given that we're a number of days in, I hope that they are working on later phases of Eradication, making sure that the original attack vector is taken care of so that once they bring the service back online they won't see a recurrance of the event.
Hats off to them - they're doing all the right things, and communicating regularly with their client community as they do it ! I feel for them, given the length of the outage though.
===============
Rob VandenBrink
Metafore
Comments
Sony was forewarned a couple of months ago when they started banning modded consoles and people figured out there was a very easy way to turn the process back on Sony and ban virtually anybody.
http://www.neowin.net/news/can-playstation-3-hackers-now-unban-themselves-and-ban-innocent-gamers
"A post on the SKFU blog states that bans are currently based just on user accounts and the PlayStation 3 console IDs. The way around this is that hackers can modify the information that is sent and received by the PlayStation 3, thus they could not only get themselves unbanned, they could in theory, cause innocent users to get a ban.
The theory even goes on to suggest that a simple Windows application could be created that would go through all PlayStation console IDs and get the world's consoles banned in around 24 hours."
An unauthenticated DoS? I wonder what else Sony left unauthenticated.
JJ
Apr 25th 2011
1 decade ago
As for "communicating regularly" ... Sony aren't particularly renowned for being forthcoming with information. Two or three days between updates is pretty weak, even by their standards.
"Unfortunately, I don’t have an update or timeframe to share at this point in time" ... says it all.
Bob
Apr 25th 2011
1 decade ago
If you happen to follow any of the PS3 discussion boards and research this incident further, you'll note it is alleged by some posters that both personal and credit card information for PSN accounts was breached as well.
Sony needs to address these concerns one way or the other very quickly, as it has been 5+ days since the breach was discovered. That gives someone with the alleged credit card data a pretty good head start at using it, and is making a lot of PSN users very anxious.
dcolpitts
Apr 25th 2011
1 decade ago
hackajar
Apr 25th 2011
1 decade ago
http://www.escapistmagazine.com/news/view/109545-Speculation-About-PSN-Outage-Turns-to-Custom-Firmware
Ben
Apr 26th 2011
1 decade ago
BigTomUK
Apr 26th 2011
1 decade ago
I'm some glad I only gave only the mandatory required info when I created my account, and didn't use my primary email of my email.
Wow - what an ugly mess! No amount of PR is going to help them with this.
dcolpitts
Apr 26th 2011
1 decade ago
70 million compromised according to some reports. This will keep Verizon's 2010 report conclusions from being used in their 2011 report. :-)
JJ
Apr 26th 2011
1 decade ago
K-Dee
Apr 26th 2011
1 decade ago
http://kotaku.com/#!5795913/sony-comes-clean-playstation-network-hackers-have-stolen-personal-data
John
Apr 27th 2011
1 decade ago