Sony Grovels to PSN Users
- Services to be up and running soon
- Sony hire full-time security officer
- Investigation ongoing to find culprits
Sony Computer Entertainment and Sony Network Entertainment International has profusely apologised to PlayStation Network users who were affected by the hacking debacle that occurred April 20th this year.
It also announced itwill shortly begin a phased restoration by region of PlayStationNetwork and Qriocity services, beginning with gaming, music and video services to be turned on. The company also announced both a series of immediate steps to enhance security across the network and a new customer appreciation program to thank its customers for their patience and loyalty.
Following a cyber-attack on the company’s data-center located in San Diego, California, U.S.A., SNEI turned off the PlayStation Network and Qriocity services, engaged multiple expert information security firms over the course of several days and conducted an extensive audit of the system. Since then, the company has implemented a variety of new security measures to provide greater protection of personal information.
SNEI and its third-party experts have conducted tests to verify the security strength of the PlayStation Network and Qriocity services.With these measures in place, SCE and SNEI plan to start a phased rollout by region of the services shortly.The initial phase of the rollout will include, but is not limited to, the following:
Restoration of Online game-play across the PlayStation®3 (PS3) and PSP® (PlayStation®Portable) systems
- This includes titles requiring online verification and downloaded games
- Access to Music Unlimited powered by Qriocity for PS3/PSP for existing subscribers
- Access to account management and password reset
- Access to download un-expired Movie Rentals on PS3, PSP and MediaGo
- Friends List\
- Chat Functionality
Working with several outside security firms, the company has implemented security measures to further detect unauthorised activity and provide consumers with protection of their personal information. The company is also creating the position of Chief Information Security Officer, directly reporting to Shinji Hasejima, Chief Information Officer of Sony Corporation, to add a new position of expertise in and accountability for customer data protection and supplement existing information security personnel. The new security measures implemented include, but are not limited to, the following:
- Added automated software monitoring and configuration management to help defend against new attacks.
- Enhanced levels of data protection and encryption.
- Enhanced ability to detect software intrusions within the network, unauthorized access and unusual activity patterns.
- Implementation of additional firewalls.
The company also expedited an already planned move of the system to a new data centrein a different location that has been under construction and development for several months. In addition, PS3 will have a forced system software update that will require all registered PlayStation Network users to change their account passwords before being able to sign into the service. As an added layer of security, that password can only be changed on the same PS3 in which that account was activated, or through validated email confirmation, a critical step to help further protect customer data.
The company is conducting an on-going investigation and working with law enforcement to track down and prosecute those responsible for the illegal intrusion.