Sony fixes latest PlayStation Network password exploit

19 May 2011

Sony responded vigorously to the password reset issue that emerged yesterday and has denied hackers were involved. It temporarily took down the PSN and Qriocity password reset pages to fix the problem.

Reports began to emerge yesterday of a new exploit that potentially allowed hackers to change a user’s password. As soon as word emerged Sony reacted immediately and began taking down PSN login pages.

“We temporarily took down the PSN and Qriocity password reset page,” Sony’s director of communications and social media Patrick Seybold said.

“Contrary to some reports, there was no hack involved. In the process of resetting of passwords there was a URL exploit that we have subsequently fixed.

“Consumers who haven’t reset their passwords for PSN are still encouraged to do so directly on their PS3. Otherwise, they can continue to do so via the website as soon as we bring that site back up.”

The PlayStation Network was taken offline in recent weeks following a devastating cyber attack on Sony’s servers that saw hackers access information on more than 77m users. The Sony Online Network (SOE) was also hit in an attack and a further 25m users’ details were accessed, including 24,000 credit and debit card details.

On Saturday, Sony confirmed its PlayStation Network was gradually coming back online, starting in the US. It said users needed to update the firmware and change their passwords.

John Kennedy is a journalist who served as editor of Silicon Republic for 17 years