Also, after doing some digging around in some hacker sites (PSX Scene, PS3 Crunch etc) I've found out that yes, the Rebug CFW gives it's users the ability to access dev servers, add or remove an unlimited amount of funds to the PSN wallet, and even access content not available without a code (like game beta's and pre-order exclusives etc). Plus, the Rebug CFW also gives the option of faking the hard drive capacity, so that you could essentially trade it into a shop saying that it's a 320gb model, when it's only like 80gb or something. Go and read www.rebug.me for more information, it's crazy how much awful stuff they've enabled people to do. Also, hacking your console enables backups, which in some cases enables piracy, and people were playing online using these backups, so perhaps Sony are rebuilding the network to block out backed up games from being played?
Who knows, but my best guess is that they are rebuilding it to block out the serious amount of PSN Store related hacks and the access to the 'sp-int' and the 'prod-qa' development network partitions.
PlayStation Network (PS3)
Platform »
The PlayStation Network is the online service by Sony Computer Entertainment, providing downloads of games, trailers, themes and much more. The service is free, but also offers a paid version for various benefits.
PSN Still Down, Sony Not Sure If Your Personal Information Has Been Stolen
So I'm almost more worried about what is going to happen when Sony turns this thing back on. The comments about them "restructuring" the system are really weird. I can't imagine wanting to take down and re-structure a system that large and complicated. There must have been something really really bad going down for them to want to do that. And doing some major re-work with only a few days to test before releasing it to millions of users and thousands of apps... I shiver just thinking about it.
I'll pour one out for their engineers, I'm pretty sure if stuff doesn't work when they bring this back up, they'll spontaneously combust.
@xyzygy said:
I was specifically referring to the 360 version of XBL but I see your point. I didn't mean total downtime. I meant the two longest outages for XBL on 360 (since PSN existed) are longer than this one has been thus far." @Keeng: Xbox Live is also a MUCH older service then PSN is. Of course it would have had more down time simply because it's 4 years older than PSN. "
Hopefully when they get the new PSN up, they'll think to include some credit card security and encryption. You know, the kind even small time internet stores have had for years now. Still don't like the idea that your system will automatically login to your account and allow transactions without even a password prompt to confirm identity once it's logged in unless you know enough to change the settings. No idea how secure it is inside PSN itself, but from what I've seen user side, I'm not exactly filled with confidence.
Also, anonymous (while having hackers in their ranks) aren't normally what you'd call a hacking group. Or rather some may call them that, but they're not. They're a flooding group. They operate mostly by overloading systems, not actually compromising them. Annoying as can be at times, but rarely really dangerous in any way. Sure a member or a small group of members might do it, and might even use the anonymous "name." But this isn't really their MO, so (as others have pointed out) they say this isn't them, and I'm inclined to believe it. Also, when have they ever not taken an opportunity to brag about their exploits. They're not exactly humble about their "work."
" @Jeffsekai said:They said they didn't do it, thats all the proof you need with Anon. When they do something they do it for a reason, and they do it so people know it was them. What do they gain by making an attack and not saying it was them." @AncientMecha said:How the hell do you know that? They already f#$#ed up psn. Just because they say they didn't really does not mean anything. "" But Anonymous isn't anti-consumer right? Right? PFFFFSH, right. "They didn't do this one. "
"Well, I suppose I'll be keeping a closer eye on my credit card statements for a while.
"
" @Jeffsekai: Anon is a messy group of individuals who is not to say that by judging from their lack of leadership one or a couple of them decided they should take down PSN?Just saying they can't be trusted . Hacker=uncoventional "If it's just one or two people that sometimes helped Anon in the past then my point stands that it is not their doing this time. Anon does things as a group thats their M.O. , if it's just 1 or 2 people then it isnt Anon.
This is shown how insecure the PSN was. As someone who has their card details I am definitely nervous until they say whether details were leaked or not.
I actually don't believe it's Anonymous. Only Anonymous is dumb and ironic enough to plaster their name over everything they do.
" This is shown how insecure the PSN was. As someone who has their card details I am definitely nervous until they say whether details were leaked or not.I wouldn't get your hopes up. This whole situation has seemed a lot more like a reaction to some kind of serious breach and Sony is frantically trying to to do damage control. I'm pretty sure they've already done the math on how much this outage is costing them per hour. You don't do this kind of thing for any minor reason and thinking they might make any other modifications to the service other than getting it back up seems far fetched at this point.Insecure system or not, hackers should not be able to get away with these kind of things. It has hurt the gamers more than sony, so what was the point?If Sony is taking the time to make the system more secure than thats all good, but why wait until they were attacked before doing it? Maybe, just maybe we will get a nice new feature out of this (party chat), heres to hoping"
The longer it goes on with little or no details from Sony other than 'We don't know', the more worried I get....If five days later it was just a hack that did not affect consumers and only gave away free goodies to hackers, they should have said so by now. Instead we get nothing publicly other than we don't know what happened or when it will be up again.....scary.
I've been wanting to know why my PS3 couldn't get online. I don't use it much so I guess I didn't hear about this.
Just read a couple of pages back in the comments, read the PSN Down thread and" @Jeffsekai said:
How the hell do you know that? They already f#$#ed up psn. Just because they say they didn't really does not mean anything. "" @AncientMecha said:
They didn't do this one. "" But Anonymous isn't anti-consumer right? Right? PFFFFSH, right. "
http://www.neogaf.com/forum/showthread.php?t=428229&page=59 over at neoGAF, and you'll find it's very unlikely anonymous anything to do with it as a group. The were some critical security flaws in the structure of PSN that made it possible for people with custom firmware to access developer network partitions where they could create fake money for the PSN Wallet, which they used to buy games with, and also a flaw with how PSN handled Plus memberships that made it possible for Plus users to make their trial games full versions for free, without even jailbreaking their PS3's. Sony shut PSN down themselves to minimize the losses and recode the entire network.
It's also not likely any credit card information was leaked because of this, though it's of course not impossible, given how much access CFW users seem to have had to the private sony network.
As it looks right now, Sony has not lost any user data, just a lot of money due to people getting their games for free through their own network infrastructure.
" As a dude who just had his personal details yanked a month ago and then used against his will, it would be really nice if Sony could at least say, “Hey, you know, maybe these people do have your credit card number and address.” "
It's definitely inconvenient to have your credit card info stolen but is it really that difficult to monitor your activity and phone your card provider at the first sign of suspicious activity?
I've had it happen to me once, it was a pretty simple process. Not to say that I'd like it to happen again, just that it really wasn't as much of a hassle as some let on. Maybe my experience is the exception to the rule however.
this is reaching ridiculous levels. fortunately I don't have any money or details on my PSN account, but this is some serious legal buisness going on.
It doesn't look like CC info is compromised though, at least not based on the info I've found so far, though obviously all we have until Sony says anything officially is speculation - but since the PSN wallet exploit with custom firmware seems confirmed to have worked, it looks like a reasonable explanation to why Sony took down the service for recoding.
Doesn't hurt checking the bank statements now and then though.
" @wh4tshisface said:OJ Simpson said he didn't do it too, but look how that turned out" @TurboMan said:Indeed. "" great job of pissing off anonymous, Sony... now we're all possibly in trouble. "They already said they didn't do it. "
@butchio:
In the past, if you were Sony and you had proof that your console was hackproof, and you've yet to have a hack then it's understandable to believe that your system is currently hack-proof, until you're made aware it isn't hack-proof anymore because someone has finally managed to hack it.
Baring in mind that even if you believe it's hack-proof you'll likely still have your best people monitoring it for signs of hack attempts.
At which point Sony has definitely had their best programmers and code guys working on the hole in their chainmail since it was first discovered.
Why do you think they released a patch shortly after George "Geohotz" busted open their protection setup?
Or Wayne Felker, he said he didn't do it, look how that turned out." @Jeffsekai said:
" @wh4tshisface said:OJ Simpson said he didn't do it too, but look how that turned out "" @TurboMan said:Indeed. "" great job of pissing off anonymous, Sony... now we're all possibly in trouble. "They already said they didn't do it. "
Ok, I've seen a bunch of speculation of why people think PSN is down, and I thought I should just post what the community knows in comparison to what Sony is telling everyone. The truth is, there was a new CFW (custom firmware) released known as Rebug <redacted so GB mods dont ban me :)>. It essentially turns a retail console into a dev console (not fully, but gives you a lot of the same options that usually dev's only have access to). Anyway, this new CFW was quickly figured out to give CFW users access to the PSN network again via the dev networks. With a little manipulation of the URL's through a proxy server you could get your hacked console back online. Not that big of a deal, right? Well, it also turns out that some people over at NGU found out that you could provide fake CC# info and the authenticity of the information was never checked as you were on Sony's private developer PSN network (essentially a network that Sony trusted). What happened next was extreme piracy of PSN content. Sony realizing the issue here shut down the network. Now, before you go freaking out about the latest information posted about Kotaku, no ones personal information was accessible via this hack. Not to say they couldn't get it, but no one is admitting to it being available. Anyway, that's the real reason for the PSN downtime. Sony is now rebuilding all of it's PSN servers to be more secure and (hopefully) make sure the CFW users cannot get online anymore.
source
"Great post, it's been mentioned before, but seems to get drowned in the floods of people reiterating the unsubstantiated claim that anonymous were behind it.
Ok, I've seen a bunch of speculation of why people think PSN is down, and I thought I should just post what the community knows in comparison to what Sony is telling everyone. The truth is, there was a new CFW (custom firmware) released known as Rebug <redacted so GB mods dont ban me :)>. It essentially turns a retail console into a dev console (not fully, but gives you a lot of the same options that usually dev's only have access to). Anyway, this new CFW was quickly figured out to give CFW users access to the PSN network again via the dev networks. With a little manipulation of the URL's through a proxy server you could get your hacked console back online. Not that big of a deal, right? Well, it also turns out that some people over at NGU found out that you could provide fake CC# info and the authenticity of the information was never checked as you were on Sony's private developer PSN network (essentially a network that Sony trusted). What happened next was extreme piracy of PSN content. Sony realizing the issue here shut down the network. Now, before you go freaking out about the latest information posted about Kotaku, no ones personal information was accessible via this hack. Not to say they couldn't get it, but no one is admitting to it being available. Anyway, that's the real reason for the PSN downtime. Sony is now rebuilding all of it's PSN servers to be more secure and (hopefully) make sure the CFW users cannot get online anymore.
source "
Please Log In to post.
This edit will also create new pages on Giant Bomb for:
Beware, you are proposing to add brand new pages to the wiki along with your edits. Make sure this is what you intended. This will likely increase the time it takes for your changes to go live.Comment and Save
Until you earn 1000 points all your submissions need to be vetted by other Giant Bomb users. This process takes no more than a few hours and we'll send you an email once approved.
Log in to comment