My Take: PSN Breach

So I am sure by now you may have heard about the trouble Sony is having. Hackers took down PSN on April 19th. As of this writing on the night of the 26th it is still down and the news got a lot worse today. My intention is to give you my view of the incident and what I think you as a gamer should take from it. The best place to start this discussion is with just what exactly happened.

From everything I have read this attack and subsequent downing of PSN was in response to the whole Geohotz hacking case. Which as you recall was settled out of court recently. All we knew up until today was that PSN an Quorcity had been taken offline and that Sony was working to fix the issue. Now news has come out that the hackers have obtained at least the names,addresses and login of PSN users. While speculation still runs wild on whether any or not this also meant financial information. This news to me changes the scope of the incident and I don’t care what anyone else says in that regard.

You see when it was just hackers taking PSN offline in an attempt to teach Sony a lesson that was one thing. They all got to feel good about themselves and get even with the big evil corporation. Normally that barely even gets a yawn out of me. As Glasenator always say’s “hackers going to be hacking”. Even the supposed experts lick my buddy Pachter have said the intent behind this attack wasn’t malicious. I’m sorry, but any time sensitive user data is exposed to people who might use it for personal gain their intent becomes malicious to me. Personally I highly doubt the hackers needed to go that far in to Sony’s database if their intent was to just take PSN offline for a few days. As far as I am concerned the attackers went a step beyond internet vandalism when they started accessing that type of information. While nobody has a clue who was behind the attack at this point, you can bet I won’t be shedding a tear if they are caught and prosecuted. Given what Sony did with the Geohotz affair, I would suspect they will take anyone they can tie to this disaster to court. Speaking of Sony, let’s now move to how they have handled this crisis.

I suppose from the point of view of a PSN user, they haven’t handled to brilliantly when you consider the total scope of the mess. Being that I don’t own a PS3 or use PSN I have a bit different perspective on the matter. I do feel a lot of sympathy for my fellow gamers who own a PS3 and use the PSN regularly. All gamers know how it feels when we can’t fully access our gaming platform of choice. As to Sony itself I am not quite yet ready to throw them under the bus. By all accounts they seem to be doing everything in their power to bring PSN back online and better than it was before. That leaves us with the whole user data question. While there was nothing they could do about the extent of the damage the hackers did, they must be very careful with how they handle the PR. As of right now it appears they have been upfront with giving users all the information they need to protect themselves from potential harm. According to Sony they knew about the PSN breach on the 19th and learned that user information had been compromised on the 25th. If that is true then they have been upfront and given user a chance to keep the attackers from accessing any credit card accounts. I know my twitter feed was filled with folks doing just that today. So far I haven’t head of any unauthorized use of cards, but we may not hear about any of that for another day or two. Right now I am willing to give Sony the benefit of the doubt, but I know many people aren’t. People being cynical about Sony’s honesty is to be expected and I won’t drop over dead from shock if we find out they are lying.

If nothing else Sony is in for a long nightmare filled road in the PR department. No matter how honest and forth coming they are a lot of gamers will have a hard time trusting them as we move forward. I can’t say I blame them. Things will only get worse if user credit cards or other private information are used by the people responsible for the attack. That will no doubt lead to legal battles and more bad PR. if the fall out from the 2008 “outage” of Xbox Live is any indication. Now the question becomes what can gamers/consumers take away from all of this.

The first thing I would say is that once Sony cleans up it’s mess they will probably be the safest service to use for quite a while after that. I know that sounds insane, but just stop and think about it for a second. Sony just got burned big time and it’s in there best interest to regain the public’s trust as fast as possible. That means being very cautious and through on how they run PSN in the future. I am not saying it will always be that way, but I am betting it’s going to a lot tougher to hack than it was the first time. Which brings me to the Xbox and PC fanboy’s which I am sure have been laughing at Sony fan’s while this has been going on. You had better be very careful when it comes to talking smack about something like this. Because if it happened to Sony it can happen to Microsoft or Steam. In fact I do believe Valve already got hacked once a number of years back. I can guarantee you we won’t be enjoying ourselves if the shoe ever ends up on the other foot. Granted asking idiots to not use this as fodder for the inane console wars, is like asking a lion not to eat a baby.

 

Both comments and pings are currently closed.

6 Responses to “My Take: PSN Breach”

  1. _G_ says:

    I look at this as a sad result for all involved. For those using the free service, it kind of sucks. But you do get what you pay for… hence nothing for nothing. I'm not trying to be mean, rather, pointing out the one thing that Sony could use to their advantage and bring in paid online service with tighter security funded by subscription fees.

    That's get the fanboys in a bunch, but it could be spun as a positive way to protect users better.

    If the XBox fell victim to this type of attack, the paid users (gold) would have grounds for a class action lawsuit based on the principle that service outlined and paid for was not delivered, and therefore is in breach of consumer/service provider agreements.

    Hopefully PS3 gamers get to go back online sooner than later…

    • BruceMcGee says:

      Oh it wasn't twenty minutes after this post went live the news on of at least two lawsuits. One in Alabama trying to get class action status and on here in California that appears to have class action status. I read over the filing of the one here in California and the PSN premium users might have a case, the free users not so much.

      As of right now there have been no credible reports of fraud committed in connection to this attack. If that remains the case these lawsuits might find it an uphill battle. The bottom line is, even if the the legal actions are successful the only people going to make money are the lawyers. There have been private data like this before and I don't recall any major civil judgement coming from them. Time will tell what the rest of the fall out of the downing of PSN is to be.

  2. PatMan says:

    Dont some people PAY for PSN plus or whatever its called, so Sony will have to offer some sort of refund.
    Its not as much about the lack of online game time for many PS3 gamers, its about the possible credit card info stolen and identity theft.

    Also, did you hear that Kratos is the exclusive content for Mortal Kombat, on PS3?
    What is exclusive for the Xbox 360? Playing online.

    • BruceMcGee says:

      Yes the PSN plus user do pay a fee. Sony has said they will compensate them. I have seen no specifics mentioned on how much or in what form the compensation will be. Granted most people aren't going to wait for that here in the U.S. and I imagine the number of lawsuits will keep going up and up before the week ends.

      • _G_ says:

        Those people I sympathize with. If Microsoft was/gets hacked, I'd be in the same boat. As much as I hate to get into the fanboy shit, that cliche argument about the PS3 being better than the 360, is that "online is free" is officially dead.

        Better? Who cares? Regardless, Sony should improve their security, and this is going to be VERY significant going on from here. It opens a Pandora's box of questions surrounding console service. Everything considering dedicated servers versus peer-to-peer, credit card information, services rendered upon purchase of a console versus paying for that service separately, etc.

        Wonderpod this week should talk about ALL of that stuff. Strike while the iron is hot gentlemen. Hell, you could have an ongoing shtick called, "PSN-Gate," or something like that. Gold, Jerry!

        • BruceMcGee says:

          Actually I have no plans at all of talking about this disaster it's to unwieldy for one. For two the majority of our audience doesn't seem to care about things like this.. Finally I don't personally think it's quite time yet to debate the ramifications until the we get all the facts. According to the latest play station blog update the CC data was encrypted and it doesn't appear that they were able to breach that. Which isn't that big a surprise to me. Sony however is being very cautious with their press releases so they may not know yet the full extent of the damages.