PSN password reset vulnerability uncovered

Written by Joe Martin

May 18, 2011 // 6:08 p.m.

Tags: #hack #playstation #playstation-network #psn #psn-password-reset #psn-password-reset-vulnerability-uncovered #sony

Sony's password reset system for the restored PlayStation Network, which was taken down by hackers last month and has only recently returned to full functionality, has been revealed to have further vulnerabilities of its own.

Sony has been forced to take down some websites in order to fix the vulnerability, which could allow hackers to change users' passwords and gain access to their accounts.

The vulnerability is based around the password reset system, which requires the email address the PSN account is linked to and the date of birth for the user - information which was compromised in the initial attacks and was not encrypted.

Eurogamer claims to have seen video evidence of the vulnerability being exploited.

'Unfortunately this means that those who are still trying to change their password via Playstation.com or Qriocity.com will be unable to do so for the time being,' Sony said in an official statement.

'In the meantime you will still be able to sign into PSN via your PlayStation 3 and PSP devices to connect to game services and view Trophy/Friends information.'

Users are advised to change the passwords associated with their email accounts, to be on the safe side.

Let us know your thoughts in the forums.

WEEK IN REVIEW

TOP STORIES

SUGGESTED FOR YOU