看板 Ericsbox
作者 標題 [轉寄][情報] Sony admits utter PSN failure 你被盜了
時間 2011年04月27日 Wed. PM 01:46:04
※ 本文轉寄自 eric90911.bbs@ptt.cc
看板 PSP
作者 標題 [情報] Sony admits utter PSN failure 你被盜了
時間 Wed Apr 27 09:05:59 2011
原文 http://goo.gl/0SdRE
Sony admits utter PSN failure: your personal data has been stolen
By Ben Kuchera | Last updated about 4 hours ago (April 26, 2011 15:24PST)
Sony承認PSN徹底失敗: 你的個人資料已經被幹走了(?)
Sony has finally come clean about the "external intrusion" that has caused
the company to take down the PlayStation Network service, and the news is
almost as bad as it can possibly get. The hackers have all your personal
information, although Sony is still unsure about whether your credit card
data is safe. Everything else on file when it comes to your account is in the
hands of the hackers.
Sony終於承認所謂的「外部入侵」造成PSN服務當機,其實比想像中的還要嚴重,雖然
Sony目前還不確定信用卡資料是不是有被盜,但黑客已經取得玩家們的部份個人資料,
所有有關玩家帳號的資料都已經在黑客手中。
In other words, Sony's security has failed in a spectacular fashion, and
we're just now finding out about it. In both practical and PR terms, this is
a worst-case scenario.
換句話說,對於practical和PR方面來說,這是情況很糟糕。Sony的安全系統已經出現嚴
重的漏洞,只是我們現在才知道。
(這段翻得怪怪的Sorry...orz)
What did they get?
他們拿到了什麼?
Here is the data that Sony is sure has been compromised if you have a
PlayStation Network Account:
這裡是Sony已經確定被盜的PSN帳號資料:
Your name 你的名字
Your address (city, state, and zip) 你的住址(縣市,郵遞區號)
Country 國家
E-mail address Email帳號
Birthday 生日
PSN password and login name PSN的登入帳號和密碼
"It is also possible that your profile data, including purchase history and
billing address (city, state, zip), and your PlayStation Network/Qriocity
password security answers may have been obtained. If you have authorized a
sub-account for your dependent, the same data with respect to your dependent
may have been obtained," Sony announced. While the company claims that there
is "no evidence" that credit card information has been compromised, it won't
rule out the possibility.
Sony表示:「關於你的個人資料,包括購買紀錄、付款地址(縣市、郵遞區號)、以及你的
PSN/Qriocity密碼的安全問題,很有可能已經被盜了。如果你曾經有連結子帳號
(Authorized Sub-Account),子帳號的相關資料可能也被盜了。」雖然Sony目前宣稱「沒
有相關證據」證明信用卡資料有被盜,但是並不排除這個可能性。
Their advice is to be safe, rather than sorry. "If you have provided your
credit card data through PlayStation Network or Qriocity, out of an abundance
of caution we are advising you that your credit card number (excluding
security code) and expiration date may have been obtained."
其實Sony應該去加強安全系統而不是在道歉。「如果你曾經有透過PSN或Qriocity輸入你
的信用卡資料,我們現在通知你你的信用卡號碼(不包括安全號碼)還有有效期限可能已經
被盜了」
(啊...就只有「通知」而已喔?...)
What can you do?
你可以做什麼?
You are warned to keep watch over your accounts, and to be aware of your
heightened risk of fraud due to the security breach. "For your security, we
encourage you to be especially aware of e-mail, telephone, and postal mail
scams that ask for personal or sensitive information," the company said.
"Sony will not contact you in any way, including by email, asking for your
credit card number, social security number or other personally identifiable
information."
由於安全系統出現漏洞,建議你常常注意你的帳號狀況,並且提高警覺防範詐騙(這是
要騙啥啊不是都盜光了嗎?...)。「為了你的安全,我們建議你特別要小心透過Email
、電話、傳統郵件等等管道洩漏個人資料或敏感資訊。」Sony表示「Sony不會用任何方式
(包括Email)詢問你信用卡號碼、身份證字號或其他個人私密資訊。」
(他們不會問但是好像蠻會洩漏的...)
Sony has also provided a wealth of sources for data and protection against
identity theft.
Sony也投入了大量的資源來保護個人資料防範他人偷竊。
(呃...)
You may wish to visit the web site of the U.S. Federal Trade Commission at
www.consumer.gov/idtheft or reach the FTC at 1-877-382-4357 or 600
Pennsylvania Avenue, NW, Washington, DC 20580 for further information about
how to protect yourself from identity theft. Your state Attorney General may
also have advice on preventing identity theft, and you should report
instances of known or suspected identity theft to law enforcement, your State
Attorney General, and the FTC. For North Carolina residents, the Attorney
General can be contacted at 9001 Mail Service Center, Raleigh, NC 27699-9001;
telephone (877) 566-7226; or www.ncdoj.gov. For Maryland residents, the
Attorney General can be contacted at 200 St. Paul Place, 16th Floor,
Baltimore, MD 21202; telephone: (888) 743-0023; or www.oag.state.md.us.
(上面這串是美國聯邦貿易局等等的相關聯絡資料,不翻譯:P)
To be fair, Sony does apologize for the inconvenience. There is still no
update on when service will be restored, but that is the least of your
concerns if you have a PlayStation Network account. It's time to change your
passwords, at the very least, and if you're like to be completely safe it's
not a bad idea to cancel your credit or debit cards and request replacements.
Sony對於造成的不便感到抱歉,不過PSN修復上線後還是沒有更新,身為PSN使用者的你
建議最少要去更換密碼,如果想要更進一步的確保安全,建議去註銷信用卡或申請更換
。
We'll continue to follow this story as it develops.
我們會持續追蹤相關報導與開發團隊的消息。
==
所以PSN到底怎麼了囧...
一下說被Cracker入侵,一下又說要修復Rebug...?
--
About me? Please visit: 關於我?我的網路電子名片
--
※ 發信站: 批踢踢實業坊(ptt.cc)
◆ From: 211.79.140.134
※ howar31:轉錄至看板 Modchip 04/27 09:06
推 :產品數位網路化還是有風險的...,還是實體片安定嗎...1F 04/27 09:08
推 :exclude是排除不是包括2F 04/27 09:16
喔喔沒注意到!感謝指正:D推 :如果是真的,老美應該會有人提告吧...3F 04/27 09:18
推 :所以還是sony的錯(笑)4F 04/27 09:20
推 :SONY這次大條了5F 04/27 09:23
推 :信用卡資料全被盜走了? sony資安太差了吧.....6F 04/27 09:30
→ : 決定了 不冒風險了 待會去銀行處理一下自己PSN用的信用卡
→ : 決定了 不冒風險了 待會去銀行處理一下自己PSN用的信用卡
推 :突然得感謝我VISA金融卡無法通過驗證....XD8F 04/27 09:54
→ :河蟹聲明就別理了10F 04/27 10:16
推 :那篇聲明和本篇內容沒差多少,一個英文一個日文而已11F 04/27 10:23
推 :問一下 密碼一般都是加密儲存進資料庫 拿到了能用嗎?12F 04/27 10:29
推 :問一下樓上:如何確定Sony存在資料庫中的密碼有加密?13F 04/27 10:33
→ :SONY這樣不用對使用者道歉賠償嗎 =.=?14F 04/27 10:33
※ 修正翻譯錯誤: exclude = 不包涵※ 編輯: howar31 來自: 211.79.140.134 (04/27 10:37)
推 :若其他地方跟PSN用同一個e-mail帳號,密碼也一樣的話,最好16F 04/27 11:14
→ :也順便改一下
※ zederlar:轉錄至看板 PlayStation 04/27 11:25→ :也順便改一下
推 :台灣部分要求賠償蠻麻煩的 因為消保法不含隱私權損害的部分18F 04/27 11:33
→ :現在有個人資料保護法,請求賠償還是有法可據19F 04/27 12:14
→ :喔喔 領教了 謝謝:) 我都忘了這個orz20F 04/27 12:15
推 :話說回來 PSN死這麼慘 該不會未來真的要用PSS取代了吧21F 04/27 12:22
→ :PSS是啥?我沒聽過耶囧rz22F 04/27 12:29
推 :PlayStation Suite,給Xperia Paly用的PS商店23F 04/27 12:31
→ :同時也支援所有的Android裝置 會不會支援NGP不確定
→ :但是要搞轉移的話是個大工程...
→ :同時也支援所有的Android裝置 會不會支援NGP不確定
→ :但是要搞轉移的話是個大工程...
推 :問題是這次PSN大出包,玩家對PSS有多少信心?26F 04/27 13:27
→ :我現在才意識到我已經忘記PSN的密碼x3了 lol27F 04/27 13:30
推 :毛的... 前幾天才申請完而已~ 結果變成這樣!28F 04/27 13:33
→ :難怪最近都收到一堆垃圾信~ 該不會跟這個有關吧?
→ :只不過垃圾信的E-mail跟註冊的不一樣就是了... (逃~)
→ :難怪最近都收到一堆垃圾信~ 該不會跟這個有關吧?
→ :只不過垃圾信的E-mail跟註冊的不一樣就是了... (逃~)
--
※ 看板: Ericsbox 文章推薦值: 0 目前人氣: 0 累積人氣: 288
回列表(←)
分享