Sign up for our newsletter
Technology / Cybersecurity

Sony forgot to fix a PSN glitch, does it now

Beleaguered by last month’s hack that forced it to shut the PlayStation Network (PSN) for over a month, Sony had to disable the service again after it realised that hackers could still exploit a flaw in the password reset page.

"We temporarily took down the PSN and Qriocity password reset page," Sony spokesman Patrick Seybold said in the PlayStation blog.

He clarified that the disruption was not due to a hack and that engineers have fixed the glitch.

White papers from our partners

"Contrary to some reports, there was no hack involved," he explained.

"In the process of resetting of passwords there was a URL exploit that we have subsequently fixed."

Another Sony spokesman Dan Race explained that since details of users had been stolen, there remained a glitch while resetting passwords with birth dates.

"If I had your email and your birth date I could have potentially got access to your account," Race said.

After discovering the flaw, Sony temporarily disabled the PSN password reset page, as well as that of its Qriocity music service. The company said that it has fixed the patch and that the pages will be functioning soon.

After being shut down for over a month, Sony on Sunday had begun a "phased restoration" of network services.

Meanwhile, while defending Sony’s action after last month’s hack, Sony chief executive Howard Stringer has said that there was no delay on the company’s part, and that it acted swiftly.

Stringer also admitted that he cannot guarantee the security of the PSN or any other Web service in today’s "bad new world" of cyber crime.

 
This article is from the CBROnline archive: some formatting and images may not be present.

CBR Staff Writer

CBR Online legacy content.