For this piece of news, interpretations will vary.

Sony's latest update concerning the ongoing PlayStation Network outage has been posted at the PlayStation Blog , where we learn Sony is currently in the "final stages of internal testing of the new system." Now, that sounds like good news on the surface, but many will remember their claim that "some services" would come back this week…seems like they're a little late. Even so, we figure Sony should get this resurrection right the first time around.

In addition to this status update, it has also been announced that Sony plans to offer PSN users "free enrollment in an identity theft protection program." The electronics giant has teamed up with Debix, Inc. in order to provide all US-based PSN and Qriocity users with 12 months of coverage in the company's AllClearID Plus program. The cost? Free. You'll have until June 18 to sign up and Sony says users will start to see activation e-mails for the service "in the coming days." If you're in another country, Sony says they're pursuing other ID protection plans for you.

The AllClearID service features an insurance policy worth $1 million that covers the impact of identity theft. Sony will also "monitor criminal websites and data recovered by law enforcement" for users data; if they find your information where it shouldn't be, you'll receive a phone call or e-mail notifying you of the situation. You'll take advantage of that, right?

Subscribe
Notify of
143 Comments
Oldest
Newest Most Voted
Inline Feedbacks
View all comments
whosthedoc
whosthedoc
9 years ago

Sounds like Sony is trying to do it right. Sony is on a slippery slope right now, and if they don't fix things right the first time, people might loose all confidence in them. I think they are at a real pivitol time, with the PS3 finally hitting full steam, and trying to launch a new system. If things go bad now we could see the beginnings of Sega. Sometimes in this business, 2 strikes and you are out.

Clamedeus
Clamedeus
9 years ago

It's going to take more than this to take Sony out of the game, they have other source of revenue to keep them floating.

AcHiLLiA
AcHiLLiA
9 years ago

whosthedoc, Nonsense!


Last edited by AcHiLLiA on 5/6/2011 9:45:55 AM

maxpontiac
maxpontiac
9 years ago

You are joking, right doc??

phade2blaq
phade2blaq
9 years ago

Well I agree with you to a point ! Sony since they joined the video game business in the mid 1990s has time and time again dropped the ball !

They are still selling faulty Playstation consoles i.e. (Freezing, Skipping, Disc Read Errors, and exclusive to the PS3 YLOD !

These problems have persisted for some 15 years now and Sony has never done the right thing regarding this !

With the PSN, giving us then taking away BC, not allowing PS3 owners the option to use the other OS and no cross game chat, Sony continues to drop the ball and they do not listen to what the consumers want !

Without loyal Playstation customers, their brand could be in serious jeopardy as other PS3 owners growing tired of the outage have already jumped ship !

Most PS3 games are not playable online so without the PSN the PS3 is rather useless unless you like watching movies which I have a stand alone blu-ray player for !

They need to get the PSN back up because the longer they take the more patience PS3 owners are losing not too mention folks will be skeptical of trusting Sony with their personal data !

This doesn't bode well for Sony which has allowed its stubborness yet again prevail over common sense !

phade2blaq
phade2blaq
9 years ago

Well I agree with you to a point ! Sony since they joined the video game business in the mid 1990s has time and time again dropped the ball !

They are still selling faulty Playstation consoles i.e. (Freezing, Skipping, Disc Read Errors, and exclusive to the PS3 YLOD !

These problems have persisted for some 15 years now and Sony has never done the right thing regarding this !

With the PSN, giving us then taking away BC, not allowing PS3 owners the option to use the other OS and no cross game chat, Sony continues to drop the ball and they do not listen to what the consumers want !

Without loyal Playstation customers, their brand could be in serious jeopardy as other PS3 owners growing tired of the outage have already jumped ship !

Most PS3 games are not playable offline so without the PSN the PS3 is rather useless unless you like watching movies for which I have a stand alone blu-ray player for ! I buy game machines to lay games on not watch movies or videos !

They need to get the PSN back up because the longer they take the more patience PS3 owners are losing not too mention folks will be skeptical of trusting Sony with their personal data !

This doesn't bode well for Sony which has allowed its stubborness yet again prevail over common sense !


Last edited by phade2blaq on 5/8/2011 12:21:12 PM

TheHighlander
TheHighlander
9 years ago

@phade2blaq

Oh, yeah, that's right Sony, what have they ever done for gaming right? My god, they're just leeches with no positive contributions right?

Reading your post was like reading some weird alternate history of gaming.

I've had the original PlayStation a PS1, a launch PS2, a slim PS2, my family has 3 PS3s between us, and three PSPs and you know, with the exception of DREs on the PS2 that developed about 4 years after purchase, and were fixed in 5 minutes, I've not had a major problem with PlayStation gear.

I note that the entire gaming industry we have today would be vastly different without Sony and their iconic and visionary PlayStation brand.

But you know when I read your post, I was reminded of Monty Python's life of Brian and the "What have the Romans ever done for us" skit. The point being that despite all the things that people found to be wrong with the Roman empire, we are still using some of their innovations and social services today, roads and public sanitation being two examples. Your posts kind of comes across as the same thing. Ignoring all the good things Sony has done for gaming and gamers, and exaggerating all the negatives.

Pretty biased if you ask me, do you have an agenda?

ZettaiSeigi
ZettaiSeigi
9 years ago

While the identity theft protection thing is not applicable to me, I'm glad that Sony seems to be doing everything within its power to prevent a similar incident from happening again. It's also good to know that we can expect the PSN to be back online soon, and that would make a lot of gamers happy.

I also appreciate Sir Howard Stringer's letter that was shared in the PlayStation Blog and Kazuo Hirai has also expressed his apologies on behalf of Sony. Personally speaking, Sony has already done what they had to do with regards to the hacking of the PSN.

FxTales
FxTales
9 years ago

They'll be fine. They'll just suffer from the usual criticisms but further on up it'll be but a fart in the wind.

WorldEndsWithMe
WorldEndsWithMe
9 years ago

So long as Xbots are downwind I'm okay with that.

Qubex
Qubex
9 years ago

That's very good World 🙂

Q!

"play.experience.enjoy"

WorldEndsWithMe
WorldEndsWithMe
9 years ago

My only problem with all this is I foresee that the free PSPlus and now the ID theft thing will both come with automatically renewing services. Those are things I hate with a passion and will not get myself into under any circumstances.

frylock25
frylock25
9 years ago

its not that hard to deactivate everything in your menu. i went and turned off everything for auto renewal. just go into your services list in the account management.

WorldEndsWithMe
WorldEndsWithMe
9 years ago

Well that's a little better, having to call someone and tell them to take you off never actually seems to work in my past experiences with autorenawal programs.

johnld
johnld
9 years ago

if you use psn cards then it wont auto renew your psn plus. as for the protection, thats what i kept thinking too.

Dancemachine55
Dancemachine55
9 years ago

I wish so much that Xbox Live made it that easy for their customers.

Had to call their customer service just to get auto-renewal of Live Gold turned off. Then found out I had to remove all my points to have my CC info removed from Live. Still didn't work so I found out that your Live Gold subscription had to expire before you could remove your CC info. HOW DUMB IS THAT!!!

Sure, Live has Cross game chat, but thats the only thing about Live thats better than PSN. Altering account info and removing payment options is FAAAAAAR easier on PSN than Live.

Anyone who says Live is better in every way is an Xbot fanboy and is ignorant of user-friendly services.

Qubex
Qubex
9 years ago

Its M$ you're talking about… anally retentive!

Q!

"play.experience.enjoy"

maxpontiac
maxpontiac
9 years ago

Dancemachine… True!

BTNwarrior
BTNwarrior
9 years ago

now thats the sony I love, making things more right than they need to be


Last edited by BTNwarrior on 5/5/2011 9:46:46 PM

Qubex
Qubex
9 years ago

It helps but its a little bit of a gimmick. These corporates know that retaining their market share is what keeps them afloat, otherwise it is game over. They are so deeply worried that people will convert over to the dark side of the force they need to be seen to be doing something.

Honestly, I would have preferred a selection of free games…

Q!

"play.experience.enjoy"

TheHighlander
TheHighlander
9 years ago

agreed Qubex, but I suspect that's true for most people, but this will look better to the various politicians looking to score points, and State AGs with career plans…

TheHighlander
TheHighlander
9 years ago

agreed Qubex, but I suspect that's true for most people, but this will look better to the various politicians looking to score points, and State AGs with career plans…

WorldEndsWithMe
WorldEndsWithMe
9 years ago

So fanboysim at gamespot is gone huh Ben? The source says "By allowing millions of PlayStation Network users' personal info to be stolen, Sony caused no shortage of consternation and concern among its customers."

So Sony just ALLOWED this did they? *eyeroll at gamespot*

FxTales
FxTales
9 years ago

Agreed. I was just on there earlier, they can't help themselves.

Ben Dutka PSXE
Ben Dutka PSXE
9 years ago

Well, relatively speaking, that's minor. 🙂

Killa Tequilla
Killa Tequilla
9 years ago

I think that what Sony is doing for us – more than shut websites big mouths, like Kotaku. O_o

At this point they are in the denial stage.


Last edited by Killa Tequilla on 5/5/2011 10:19:16 PM

Anonymous
Anonymous
9 years ago

As long as Justin "Xbot" Calvert is there, GameSpot is another website run by his ilk.

BTW, Ben, thanks for finally getting rid of the bots. I haven't seen one in a long time here.

Ben Dutka PSXE
Ben Dutka PSXE
9 years ago

Can't get rid of them forever. They'll always be around but as soon as I see one, the bot and all its posts disappear. It's the best we can do.

TheHighlander
TheHighlander
9 years ago

Oh yeah, they just allowed it. Didn't you know, global networks are trivially easy to protect…or at least they are according to gaming journalists and a legion of Internet commentary.


Last edited by TheHighlander on 5/5/2011 11:02:42 PM

Qubex
Qubex
9 years ago

Just a reminder gents that the very plausible theory of it being an inside job after the mass firing of 1/3rd of Sony network employees, 2 weeks prior to the PSN take down, is something that cannot go unnoticed.

Let's always keep a balance and consider all facts equally… Many people would say Sony are to blame for the most part and brought this upon themselves.

Whatever you want to believe always keep an open mind and don't be blind sided, it happens to often in this world, where emotional thought destroys any sense of logic or counter balance. Its important to retain some sense in all of this… each side will blame the other.

Personally I am neutral. I lost Other OS, caused me issues, but I like the Sony exclusives, and therefore I keep my PS3. Everything else is not of interest to me…

Q!

"play.experience.enjoy"

Qubex
Qubex
9 years ago

Gents, to add further balance to our discussions, I decided to paste in a comment made on Eurogamer by Games Producer – Alan Botvinick
————————————————————————–
"In US congressional testimony Dr. Gene Spafford of Purdue University said that Sony was using outdated software on its servers and knew about it months in advance of the recent security breaches. According to Spafford, security experts monitoring open Internet forums learned months ago that Sony was using outdated versions of the Apache Web server software, which "was unpatched and had no firewall installed." The issue was "reported in an open forum monitored by Sony employees" two to three months prior to the recent security breaches, said Spafford.

So…
No firewall
No encryption
No software updates
No monitoring
No listening to their own forum
No to quality control on their hardware

Certainly trust in Sony is very lacking.

Makes you wonder how many *other* companies we do business with on a day to day basis are just as incompetent in their practices without us knowing it. Until something like this happens that is."
————————————————————————–

Q!

"its in your interest to know"


Last edited by Qubex on 5/6/2011 12:25:38 AM

TheHighlander
TheHighlander
9 years ago

Qubex,

Balance is definitely required and the possibility of an inside job definitely exists.

However your list needs correction.

So…
No firewall – at that particular server, I don't know about their specific architecture, but my current organization doesn't depend on firewalls on the application servers, they use a strong perimeter, whether the app server had a firewall or not, isn't an indication of whether there were perimeter defenses between the server and the outside world. I'm practically certain Sony has talked of firewalls at the perimeter of their network.
No encryption – CC data was encrypted and passwords were hashed. What's all this no encryption stuff eh?
No software updates – big mistake on their part.
No monitoring – they were monitoring, that's how they detected the attack. For instance, they saw that servers were restarting outisde their normal schedule.
No listening to their own forum – They may have listened, but not acted. We don't know.
No to quality control on their hardware – how do you work that one out?

TheHighlander
TheHighlander
9 years ago

Sorry for the double posts by the way, my PC seems to be behaving oddly – double clicking instead of single….

BYW this Gene Spafford, doesn't he have a consultancy service that has worked for Microsoft – among others? Not that I'm saying that the Micrsoft work itself creates a conflict of interests, but Sony engaged 4 separate companies to aid int eh investigation of the attack, none of which were his. And yet here he is presenting as simply a professor at Purdue when in fact he's runs a computer security consultancy also. Perhaps a conflict of interest to be drumming up fears about computer network security when you stand to gain from the additional work?

Also, the monitoring of Internet forums. Your comment makes it sound like this forum was some kind of specific feedback forum, when in fact it's more like this;

"On a few of the security mailing lists that I read, there were discussions that individuals who work in security and participate in the Sony Network had discovered several months ago, while they were examining the protocols on the Sony Network to examine how the games worked, they had discovered that the [PlayStation] Network servers were hosted on Apache Web servers–that's that form of software. But they were running on very old versions of Apache software that were unpatched and had no firewall installed, and so these were potentially vulnerable. They had reported these in an open forum that was monitored by Sony employees, but had seen no response and no change or update to the software. … [And] that was two to three months from when the break-ins occurred."

Apart from some odd phrasing – "they had discovered that the [PlayStation] Network servers were hosted on Apache Web servers–that's that form of software. " What now? That's just plain awkward phrasing, and sounds almost like a non-technical person trying to sound technical. Either way, odd.

He's not talking about a Sony specific forum, he's talking about a public forum that he claims was monitored by Sony. Also, the other curious phrasing – "individuals who work in security and participate in the Sony Network had discovered several months ago, while they were examining the protocols on the Sony Network to examine how the games worked"

Um, if they work specifically for Sony or a Sony developer, they already know how the games work, it's in their SDK. If on the other hand they are those security researchers (as FailOverflow and others call themselves) who like to poke around and tinker with things, I'm not so sure I'll take their word as gospel. Seriously, if you participate in the Playstation Network, is he saying that they are developers of PSN games, or gamers? If they are developers they aren't going to be poking around that way, if they are gamers and they want to cheat or hack they will be.

As I said, some interesting phrasing in that comment by Dr Spafford. Some very inexact phrasing for someone so academic…

Ah, the other thought that occurs is that I wonder whether this might be the same forum where the supposed clear text CC details were claimed to be passed between PS3s and the web servers. Sadly, upon closer inspection the claimed sample was an obvious test packet, and had been decrypted since the actual data is sent through SSL, not open text. These discussion forums are chock full of "security researchers" making all sorts of claims.

Now, if Spafford and his firm of experts had done the checking on the servers and found the same things, I would be more prepared to take his word for it. But since he's relating a third hand account of a second hand conversation on a public Internet forum, you'll have to excuse me for being so skeptical.

Oh, people in the industry have a good idea of the extent of the problems, a lot of it just goes unreported in the public eye.


Last edited by TheHighlander on 5/6/2011 1:07:47 AM

Qubex
Qubex
9 years ago

Yip, fair enough… just wanted to highlight that I simply pasted in the words of the producer, so none of it between the dotted lines was from me. I just thought it may bring some additional discussion points.

Thanks for yours as always.

Q!

"play.experience.enjoy"

TheHighlander
TheHighlander
9 years ago

Hey, I'm not totally discounting what he said, I read some of the posts on a couple of forums discussing exactly the things he's talking about, but the folks doing the discussing were not what I would call reputable security professionals – if you get my drift.

If Sony's systems were as insecure as he appears to allege, then during the course of the FBI/DHS investigations the findings of the various forensic teams and consultants engaged by Sony to investigate will supplement the investigations of the teams from the FBI and DHS, you'd expect one or more of those teams would have similar findings. So, presumably one day we will know for sure.

I read some more of Spafford's comments, I really hate it when academics start a consultancy and then pimp it's services like this quote from an article citing the good Doctor.

<<<The problem, according to Spafford, was that law enforcement was not adequately equipped to deal with the problem. He also said that most companies were not equipped with enough security measures because "investing in security measures affects the bottom line. They don't understand the risks involved by not investing in security. … So when they are hit, they pass that cost along to their customers, and to the rest of society." >>>

Remember he's testifying to Congress as an academic expert from Purdue, but at the same time runs a consultancy that specializes in offering security services to organizations with an online presence. He also indulges in a little bit of scaremongering claiming that the breach could cost up to $24 billion. All in all, any credibility he had at the outset was shot down by the end.

That's not to say that there is nothing to the discussion he mentioned about unpatched Apache, the servers were clearly not fully patched and Sony themselves revealed that the attack exploited a known vulnerability. So there is clearly something there. But I just don't think it's helpful for an academic to turn up at a congressional hearing and cite a third hand conversation between parties unknown on a relatively anonymous Internet forum as if it is indisputable fact. It doesn't feel like the kind of thing that an educator grounded in the scientific method would do.

___________
___________
9 years ago

well…… yea they kinda did!
by having outdated servers they literally gave them the keys!
they got warnings from so many people to update the software because there at risk of a security breach.
but did they listen?
hopefully they will learn from this, and update the nanosecond a new version is out!
patches are normally released for a reason!

The Doom
The Doom
9 years ago

Alright! Make it happen!

Pandacastro
Pandacastro
9 years ago

Who are you guys taking to?

Edit:Accidently reply to the wrong person. It was meant for the people who reply to Naztycuts.


Last edited by Pandacastro on 5/5/2011 11:43:43 PM

Naztycuts
Naztycuts
9 years ago

@Panda It was a misunderstanding, there was a troll and Ben kicked him and deleted all of his posts. LOL at least I wasnt the only one confused.

Naztycuts
Naztycuts
9 years ago

I like the ID theft program definitely didn't see that coming. Sony is either really confident that the data isn't going to be exploited or they are in 'Oh $#*%! we have to make this right' mode. I'm not worried either way I just hope whoever hacked PSN got their jollies and wont go fooling with it again once it's back up and running.

WorldEndsWithMe
WorldEndsWithMe
9 years ago

I hope they shoot them in the EYE!

Naztycuts
Naztycuts
9 years ago

@World- totally

@everyone else- wut?

Killa Tequilla
Killa Tequilla
9 years ago

ok

Jawknee
Jawknee
9 years ago

No thanks. Now begone troll!

sticklife
sticklife
9 years ago

Wait how come you came back here? Oh wait, you must own a psp also.

WorldEndsWithMe
WorldEndsWithMe
9 years ago

lol, why would an intelligent person do that? Oh yeah they wouldn't.

Clamedeus
Clamedeus
9 years ago

No games on 360 that I like, all of the games I love are on PS3.

Killa Tequilla
Killa Tequilla
9 years ago

For us Playstation users, we get a free service and yet when Sony gets hacked they go out of their way to compensate us when they really dont need to. What does Xbox do? They un-ban everyone right?

What Sony is showing us is love.

LittleBigMidget
LittleBigMidget
9 years ago

We don't need compensation? WOW Get real, man.

Clamedeus
Clamedeus
9 years ago

@LittleBigMidget

The only compensation people need is if they have PS+ I could see that, but people without it don't really need any kind of compensation really. It's nice that Sony is doing it for everyone.