PSN OUTAGE THREAD > Seems someone wiped the psn backups

A buddy of mine had over 500 dollars charged on his credit card. It's hard to see how real it is until you know someone that's been affected by it. Apparently Capital One is taking care of the fraudulent charges.

 

How can somebody ever proof that the cc details mis-used where stolen from PSN? when you use your cc on a regular basis many people will have the oppertunity to copy these details.

 

I don't know the exact details. It's not my credit card. Maybe he's never had issues with fraudulent charges and then PSN gets hacked and then by sheer coincidence $500 gets charged to the credit card on his PSN account. :shrug:

 

Sarcasm is strong with this one.

It doesn't take a genius to work out I was referring to the people who make up 'Sony' not the name. It was a generalization for all cases of identity theft when I talked about changing your name. I wasn't saying anyone should do it in this case. I myself won't be changing anything.

I'm sure if you had a daughter that was raped as a result of leaving the house door open, you wouldn't sit around blaming her for the mess... you'd be trying to smash the guy who did it.

But you'll say my illistration is invalid or whatever but I don't care. It's my opinion.

 

It's also possible with all this shit going down, people who where sitting on stolen credit card info are now using them up to pass the buck on to sony.

Really with out it being your credit card and knowing the full details, blaming this on sony/PSN is kind of stupid.
:shrug:

 

You know what else is stupid, allowing 77 million PSN and Qriocity accounts to be compromised. Another stupid thing is having PSN down until the end of the month. Look, I'm really sorry you can't play Killzone 3. You're just gonna have to be patient.

Also, I'm using his words. He didn't tell me, "Yeah, fraudulent charges." And then I said, "Oh yeah, that's definitely from PSN." I'm just telling you what he told me.

 

I feel bad for the devs whose main focus was PSN games

 

I'm just scared of the first day and how utterly raped the servers are going to be.

 

Thank god I never used my debit card on psn. Still a disastrous security breach.

 

I actually did. My UK one, and now I live in Japan. Will be a complete pain in the ass to get a new one, but might have to.

 

How can they charge your card without the security code/or pin anyway?

 

Good point. So what's the big fuss about then?

 

I fully agree with you 100% on that.

There is no official date to when it goes up. Bloomberg miss reported what sony said. Also best we can tell from sony is online play will be up before the store.

Yet you felt the need to spread the news here like it was validate something that has not been proven true yet (that people actually took credit card data from psn, SOE breach bid did but those where credit cards from 2007 and none where USA cards).


I'm not trying to be a defender of sony on this, they've fucked this up royally and are still doing so by not being ahead of the game with info.

 

You don't always need the security pin once it's been entered (Yahoo Auctions is a good example) plus Sony will also have that anyway because to have used the card at one point on PSN you would have had to tell them your security pin.

Also, if you have the card number you could actually do telephone shopping. I bought my HD video camera from Yamada Denki, a very large electronics chain in Japan. I paid with my wife's credit card over the phone. All they wanted was the card number, expiry dates, name and billing address. According to the news, whoever hacked Sony have access to all of this information.

Yakumo

 

From what i've gathered, once the validation is established the CVV is not required for further purchases (why you see $1 charges when using cards for the first time at some places). As well it seems it's against most card companies agreement for a company to keep your CVV on file.

This is becoming rare in a lot of places (at least over here). Hell some places online make me enter a special password (that I set up with my bank) each time I wish to make a purchase with my card (the "verified by visa" system).

 

I was under the impression that is was illegal for Sony to store the CVV, well that's at least what I've been told. Also I thought I read on the Sony website that the CC numbers are encrypted, it was just that peoples names/addresses weren't.

So if the CC's are encrypted and they don't store the CVV... unless they can crack the encryption, it's useless.. unless they sell it, which is their intention.

That's not stupid, it can happen to any business and they didn't "allow" it, it was stolen just like anyone could and probably will do to your house at some point in time. Then your insurance company will be like "Why do you allow them to steal your stuff?". What is stupid is how people expect these companies that store the info to be hacker-proof... that's impossible. Who knows, XBL accounts could be next on their target list. But I'm sure MS has already thought about new adverts to say "Buy an xbox and be safe". Not that MS has a good track record for keeping data safe anyway.

I think people are getting the impression that because 77 million(50% of them don't even have CC's on file) accounts were taken... that it must have been a walk in the park to do. They could have spent months trying to get in and failing. I guess you could compare this to a game of AOE. You build a wall 3 layers thick around your empire, but didn't think about filling the inside up with Bombard Towers.

Anything man puts his mind to, he will achieve. And in the hacker's case, he did. (within reason)

And for the people ranting(on other sites) that because of this they will never buy a Sony product again. Be realistic. Apple was recently in a mess over the tracking of it's users (not to mention their stupidly bloated prices). You going to drop them also? Your Facebook account gets hacked, you going to kick and scream at them for letting it happen? Microsoft Windows allowed a virus on your computer which destroyed it? Are you going to go join the MS hater's club? Except for Apple, all these were not intended to occur.

Before you know it, you'll hate every business you know.

Blarg, someone will hate on my post or fill it with sarcasm like before.

 

People really do not need the security code to charge to your account. The kind of people who steal credit info know what they're doing, they can make clones of your card using only the 16 digit number. From there they can use it to go shopping or whatever. Also there are many online shopping sites that do not even ask for the security code at all.

I know that most of the time when I use my credit card, they do not check for id.

 

I know of this one, however thats when the shop keeper should be checking the digits on the receipt to the digits on the card, the signature and the little holographic foil.

That's at-least what I had to do when working in retail.

 

The problem there though is that the salesperson or shopkeeper no longer sees the card that's being used these days. No-one pays by cheque anymore so the ability to check the signature no longer presents itself and with the introduction of 'chip and pin' the days of you handing your card over at the till to be swiped are long gone. Just go to any supermarket and ask for cashback. While in some cases they may ask you to sign the receipt to prove they've given you the cash they don't ask to check that it matches with the sig on the card.

 

Well I'm not sure it's actually "illegal" as there must be a law on the books and in every country for it to be illegal. Far as I know it's a huge sticking point for most card companies and failure to adhere will lead to expensive yearly audits and no protection over fraudulent purchases.

Anyways yet, from what we know CC where encrypted and on another server (which they've yet to confirm was actually access, they said could have been but have no proof the data was touched) and on top of that passwords where hashed.

Also to add to your hacked bit, recently LastPass (a site people went to trust after the PSN issue) got hacked and people's password lists where stolen. :shrug:

Locally, most stores near me have moved to Chip & Pin. Visa Pins obviously wouldn't be in sony's server (as this is only a point of sales protection) and unless they lived near me to magically watch me use my pin, they wouldn't be able to make any purchases larger then $25 anyways. If they are a series of foreign charges, my bank will contact me to see what is up.