Is Sony’s New Password Reset Program A Hacking Exploit?
Some reports floating around the net are seeing Sony yet again as a target, suggesting that the new password reset program that the company set in place could possibly have inadvertently put the network right back into the hands of hackers.
The supposed exploit makes it possible for hackers to change user’s PSN account passwords using two pieces of information – the email address linked with the PSN account and the user’s date of birth. These, of course, are both pieces of information that could have been obtained by these same hackers when the network was compromised in the first place. The first instance of this exploit was reported by the site Nylevia, but the rumor has since been confirmed by Eurogamer. There was apparently even video proof which supported the claims by Nylevia, according to Eurogamer.
Sony has since responded to the incident, stating that although they “briefly took down the PSN and Qrocity password reset page,” there was no hack encountered in the process of resetting passwords. Senior Director of Corporate Communications and Social Media at Sony, Patrick Seybold, is encouraging users to reset their passwords directly on their system, rather than use the website if they haven’t already done so. At this time there has been no evidence that this process was exploited in any way.
