Key Takeaways
1. The PlayStation Network has a history of security breaches, with a major incident occurring in 2011 and ongoing smaller issues.
2. A journalist experienced a hack that allowed a hacker to change his PSN account email and password, leading to unauthorized charges.
3. The account recovery process is alarmingly easy, requiring only a username and a transaction number, despite the presence of two-factor authentication (2FA).
4. After recovering his account, the journalist was hacked again shortly after, highlighting serious security concerns and vulnerabilities in PSN.
5. Other users, like trophy collector dav1d_123, have faced similar issues, indicating that gamers cannot rely solely on 2FA or PSN’s security measures.
The PlayStation Network has experienced notable hacks and service interruptions, with the infamous data breach in 2011 being a prime example. Sadly, there have been ongoing smaller security issues. A recent event involving a French journalist demonstrates just how simple it can be to acquire sensitive login information from PSN support.
Journalist’s Experience
Nicolas Lellouche, a writer for Numerama, shared his challenges on social media. He explained how a hacker took over his PSN account, changing both the email and password linked to it. Lellouche discovered a charge of €9.99, which was the fee for these changes.
Recovery Process
Upon reaching out to support, the journalist found out how easy it was to recover his account. Lellouche simply had to provide his username and a transaction number from a previous bill. Even though the service has two-factor authentication (2FA), it did little to hinder the hacker’s progress.
Continued Troubles
Just one hour after getting his account back, Lellouche realized he had been hacked again. Frustrated with PlayStation Network support, he decided to reach out to the hacker. The person was surprisingly friendly, suggesting that a transaction number Lellouche had posted online was the reason for the breach. Still, the hacker preferred to play Call of Duty on the account rather than stop the attacks.
Lellouche’s latest support request is currently under review as agents look into the situation. While his tale may end on a positive note, it has left readers questioning the security of PlayStation Network even more. A crucial lesson learned is never to disclose account details, even if it’s to guard more sensitive logins. This incident is not the first instance where the company has cooperated with hackers.
Other Incidents
In October, a trophy collector known as dav1d_123 had his achievements stolen. Like the journalist from Numerama, he conversed with the thief, who was selling the trophies on the black market. Once again, the hacker only needed to provide a username to convince PSN to transfer ownership.
It’s clear that gamers cannot depend on 2FA or PlayStation to spot unusual activities. Yet, it’s not just PS5 players who worry about losing digital purchases or facing unexpected charges. An Xbox user recently lost a 15-year collection of games after a hacker changed his email address. In this instance, customer service has been much slower to restore access to the rightful owner.
Source:
Link
Leave a Reply