The Business-Technology Weave

Apr 27 2011   11:07AM GMT

Security, Sony, and Station (PlayStation)



Posted by: David Scott
Tags:
breach of credit card
cost of data breach
credit card breach
data breach
data breach expense
data security
e-mail spoof
online spoof
playstation breach
Sony
sony breach
Sony PlayStation
spoof

Oh oh (again).  Sony says that sometime between April 17th and 19th, its PlayStation network was hacked.  Here in the classy environs of The BTW (and by extension, IT Knowledge Exchange and TechTarget) we might refer to this as a breach.  Sony is advising its 77 million (disconnected) users to check their credit card accounts.

Oh my:  Even children at play (and adults, too) are not safe – but we knew that.  It’s a cold, cruel world.

Apparently birthdates, e-mail addresses, and purchase histories have been “accessed” (therefore, for purpose of liability assessments, assume:  “Stolen”).  Too, credit card info may have been stolen, but Sony doesn’t know for sure – last time I checked.  (I guess you could say last time they checked!). 

However, PlayStation users are advised to check their accounts.  I’m glad I’m not a “player,” at least in this context.  For those of you who are parents, with kids, with PlayStations, you’re going to want to run this to ground to your own satisfaction.  Check with your card providers – and I’d do it by phone…

Sony says the attack is “malicious” in nature, and has hired an outside security firm to investigate.  Hmmm… methinks they hired the outside firm about a week too late.

Going forward, beware e-mail spoofs and phishing schemes:  That is, official looking e-mails that purport to be from your bank/credit card provider(s), and while we’re at it, from Sony too.  Breaching entities can strip official logos and authentication screens – an entire website’s “oeuvre” – allowing you to think you’re logging in to “XYZ-CreditCardCo.com” – you fill in credentials (ID and password; again filling a hack situation)… when in fact you could leave the fields blank and access the dummy site.  But, you’ve entered the critical info… and then… the site asks for all sorts of “further authentication.”  Oops.

How the heck does Sony get breached, hacked, violated… anyhow?  Aren’t they… big?  Protected with the latest security measures?  Are they not on the RFE (Responsible Forward Edge)?  Don’t they know what they’re doin’?  Um…

When Sony’s system is back up, change your ID(s), password(s), and any other authenticating/security/credentialing information.  Immediately.

Just to be sure.

 

NP:  Powerage – AC/DC.  Ok, a departure from my usual old-school, straight-ahead, jazz references.  But… someone here at S-bucks mentioned the band, and I just had to weigh in with my 3 concert experiences; two with original singer Bon Scott – and those were… simply… amazing.

 

 

 

 

 Comment on this Post

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when other members comment.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: