For those on PSN
05-03-2011, 11:20 AM
#23
Administrator
Join Date: Jul 2001
Location: Stuart, FL
Posts: 24,416
It is now evident is that Sony did not have a chief information security officer, which the company pledged to rectify. Apologizing for the downtime, Sony also says that it will add automated software monitoring systems in order to spot similar attacks in future.
Subscribe: http://www.fiercecio.com/techwatch/s...ceCIOTechWatch
Subscribe: http://www.fiercecio.com/techwatch/s...ceCIOTechWatch
Is that true?
05-03-2011, 11:23 AM
#24
Super Moderator
Join Date: Sep 2002
Location: Tallahassee, FL
Posts: 5,425
I went ahead and cancelled the card that I used to purchase stuff on PSN. I figure better safe than sorry. Normally I would have to pay a fee, but apparently since this is a large and well-publicized breach in security, they're waiving the fee.
What should I use for PSN (and similar) purchases in the future, a pre-paid card?
What should I use for PSN (and similar) purchases in the future, a pre-paid card?
05-03-2011, 02:22 PM
#25
Administrator
Join Date: Jul 2001
Location: Stuart, FL
Posts: 24,416
I went ahead and cancelled the card that I used to purchase stuff on PSN. I figure better safe than sorry. Normally I would have to pay a fee, but apparently since this is a large and well-publicized breach in security, they're waiving the fee.
What should I use for PSN (and similar) purchases in the future, a pre-paid card?
What should I use for PSN (and similar) purchases in the future, a pre-paid card?
You can use a prepaid visa or they sell sony psn cards at some electronics retailers.
btw, i've never heard of a credit card company charging to cancel an old card.
05-03-2011, 02:36 PM
#27
Administrator
Join Date: Jul 2001
Location: Stuart, FL
Posts: 24,416
05-03-2011, 03:31 PM
#28
Senior Member
Thread Starter
Join Date: Nov 2009
Location: peru, IN
Posts: 1,833
somewhat. here's a quote directly from sony's press release that I think they're referring to.
"Working closely with several outside security firms, the company has implemented significant security measures to further detect unauthorized activity and provide consumers with greater protection of their personal information. The company is also creating the position of Chief Information Security Officer, directly reporting to Shinji Hasejima, Chief Information Officer of Sony Corporation, to add a new position of expertise in and accountability for customer data protection and supplement existing information security personnel. The new security measures implemented include, but are not limited to, the following:
- Added automated software monitoring and configuration management to help defend against new attacks
- Enhanced levels of data protection and encryption
- Enhanced ability to detect software intrusions within the network, unauthorized access and unusual activity patterns
- Implementation of additional firewalls"
05-03-2011, 04:47 PM
#29
Administrator
Join Date: Jul 2001
Location: Stuart, FL
Posts: 24,416
somewhat. here's a quote directly from sony's press release that I think they're referring to.
"Working closely with several outside security firms, the company has implemented significant security measures to further detect unauthorized activity and provide consumers with greater protection of their personal information. The company is also creating the position of Chief Information Security Officer, directly reporting to Shinji Hasejima, Chief Information Officer of Sony Corporation, to add a new position of expertise in and accountability for customer data protection and supplement existing information security personnel. The new security measures implemented include, but are not limited to, the following:
"Working closely with several outside security firms, the company has implemented significant security measures to further detect unauthorized activity and provide consumers with greater protection of their personal information. The company is also creating the position of Chief Information Security Officer, directly reporting to Shinji Hasejima, Chief Information Officer of Sony Corporation, to add a new position of expertise in and accountability for customer data protection and supplement existing information security personnel. The new security measures implemented include, but are not limited to, the following:
- Added automated software monitoring and configuration management to help defend against new attacks
- Enhanced levels of data protection and encryption
- Enhanced ability to detect software intrusions within the network, unauthorized access and unusual activity patterns
- Implementation of additional firewalls"
That's pathetic IMO. Sony network security was an accident waiting to happen.... even in their own words. A major network with 75+ million users, no outside security audit, no one in charge of keeping the network hardened and no security software.