"...  to simply reset your account password provided they know your PSN account email and your date of birth. 

Unbelievable that the managed to set the remains of PSN on fire...just unbelievable. 

Jack Trenton now has every possible sleeve rolled up.

@JohnPaulVann: racism or no racism you are right that this could happen to anyone i cant believe so many gamers are up in arms about this but instead of being angry at the hackers all they care about is bitching about sony

God damn it. All I want this year is to play inFamous 2 and Uncharted 3 in peace. Is that really to much to ask for?

"...  to simply reset your account password provided they know your PSN account email and your date of birth. 

so what? Password reset by submitting email is on every web site login ever.

Isn't this how password reset works for just about anything? You enter your login username, and an email is sent to whatever email account is associated with that username. It just so happens that for PSN, your username is your email account.They could just make it so the password isn't reset until you hit a password reset link in that email, though that would be more open to phishing scams.I don't see much reason to be mad at Sony for doing the exact same thing as every other account-based online service.Edit: Hell, the Giant Bomb password reset works the same way. Breaking news, Giant Bomb's password reset system has been compromised!!!

It took likely years to build the network to begin with, and they had no choice but to build it again in like a month. Whoever didn't see a weird exploit coming is out of their minds. 

The simplicity of the password reset was necessary because the interwebs confuses too many people, but coincidentally that type of thing is what MOST password resets I've ever had to do use (I think Amazon has it fairly simple, too, and my credit card info is all over that bitch), so pretty much most of the internet is vulnerable to this type of account theft.

/yawn

Hackers are real pieces of shit, aren't they. No-life basement dwelling losers that have nothing to do but to fuck peoples shit up.

i was lucky on this, just before this whole mess happened my  CC validation date went off, and i never touched my PS3 since. guess i made the right move unconsciously hehe.

hmm so i guess i wasn't being crazy when i thought that perhaps the point was to put something in place to capture all the ppl who reset their passwords.  probably still an oversight and not a plot, but there it is...  glad i waited to use my ps3.

thats pretty stupid on Sony's part.  All you need is a password reset system in which it asks for you e-mail address it checks if that e-mail address is in the system and then sends you an e-mail with a temporary password.  You use that password to log in, and the first thing it should do after logging in is to change the password.

Bah!

@warmonked said:

"...  to simply reset your account password provided they know your PSN account email and your date of birth. 

so what? Password reset by submitting email is on every web site login ever.

@Donos said:

Isn't this how password reset works for just about anything? You enter your login username, and an email is sent to whatever email account is associated with that username. It just so happens that for PSN, your username is your email account.They could just make it so the password isn't reset until you hit a password reset link in that email, though that would be more open to phishing scams.I don't see much reason to be mad at Sony for doing the exact same thing as every other account-based online service.Edit: Hell, the Giant Bomb password reset works the same way. Breaking news, Giant Bomb's password reset system has been compromised!!!

@teekomeeko said:

It took likely years to build the network to begin with, and they had no choice but to build it again in like a month. Whoever didn't see a weird exploit coming is out of their minds. 

The simplicity of the password reset was necessary because the interwebs confuses too many people, but coincidentally that type of thing is what MOST password resets I've ever had to do use (I think Amazon has it fairly simple, too, and my credit card info is all over that bitch), so pretty much most of the internet is vulnerable to this type of account theft.

Man I love it when other people do my work for me.

Sony, get your shit together.

"State-of-the-Art" Security Technology.

yeah I have changed my password and now I have made a single use email address for PS3. Mind seeing as I am not putting any credit card info back on it then hackers have at it you goddamn menaces!

Hahahaha this is hilarious!

Man. That sign on the door at Sony that says "It has been _ days since we had a hacker incident." seems to be getting a work out lately.

I mean seeing as how I'm not putting my CC into the PSN anymore, I don't really care about changing a password. I have to do it all the time at work anyway. Not big news...moving on.

" We're creating all new accounts just to be able to safely log into the PlayStation Network. I really hate the Internet sometimes. " The internet is beautiful. Hate the people :P

Also, wtf sony? Really, another issue already?

Oh dip! I just realized who the dastardly "hacker" who took down Sony was!

I like how this means that everyone who said "Japan is an asshole for not letting Sony bring their service up there" gets to eat a dick. Turns out Japan was smart waiting for other countries to find the really stupid security errors before accepting Sony knowing what's right for them.

Once again an article proves the theory that 90% of internet users never read the story, just the dramatic headlines.

Great.

Once again an article proves the theory that 90% of internet users never read the story, just the dramatic headlines.

Those that have read the story realise this is not a big deal - and that those details are pretty much used in this way by nearly every site on the net (giantbomb included).

Everyone else continue panicking and screaming to get your internet fanboy e-boner high and proud now that you have something to either rage about - or laugh about -

which in the latter case just makes you an asshole, because if this WAS a major serious issue, it  would not be a laughing matter for those affected.

Sorry, but thats fucking hilarious.

"Nyleveia suggested that users create an entirely new email address for their PSN accounts, one not associated with any other online accounts in order to be absolutely safe. "  

Yeah people are kinda overreacting in the comments here. All that really came of this was a (hopefully) fixed exploit and some downtime on their web-based login stuff. 

This would affect me more if I actually used my PS3 for anything other than movies. I haven't played a game on my PS3 in months! Lucky for me, I guess? A console I never use? Ugh.

Hahahahaha

2 Strikes Sony...

But your account was only compromised if you got an email right?

Stop race-hating on Sony! This could happen to anybody. The only reason any one is talking about it is because Sony is Japanese. The RROD was infinitely worse than the PSN failure but nobody made even one tenth as much noise. 

For those saying rrod is "infinitely" worse, it really isn't. At least with that you didn't run the risk of your credit card and identity being stolen.

@JohnPaulVann said:

Stop race-hating on Sony! This could happen to anybody. The only reason any one is talking about it is because Sony is Japanese. The RROD was infinitely worse than the PSN failure but nobody made even one tenth as much noise. 

Last I heard, if my Xbox red rings, it doesn't compromise my bank account.

Thats it i'am selling my ps3

who was doing this online anyway? If this doesn't include SOE stuff it seems kinda silly.

FUCKING CALLED IT.

Oh come on people it not that big of a deal...

Seems like more of an oversight than a real hack. Someone probably should've thought about the fact that hackers had your date of birth and email before that's all they required for a password reset, but since they locked password resets to your original PS3 (not a bad move, really) I'm not sure how they could've solved having a web-based solution. The hackers have access to all the information Sony had access to, other than maybe sending a temporary password through email (provided you weren't stupid enough to leave your email password the same.)