Eideard

Sony is preparing to ban gamers from the PlayStation Network (PSN) unless they waive the right to collectively sue it over future security breaches. The firm has amended PSN’s terms and conditions and users have to agree to them next time they log in…

The new clauses, dubbed “Binding Individual Arbitration,” state that “any Dispute Resolution Proceedings, whether in arbitration or court, will be conducted only on an individual basis and not in a class or representative action or as a named or unnamed member in a class, consolidated, representative or private attorney general action”…

Those that want to opt out will have to send a letter to Sony’s Los Angeles headquarters in the US. Once they do, the subscribers will be able to keep their right to file a class action lawsuit without any need for arbitration.

But before subscribers have a chance to opt out, they will still be required to agree to the new terms the next time they log into their accounts. Otherwise they will not be able to use the online services.

In many countries, forcing individuals to agree to contracts which violate constitutional rights – are automatically invalid. Someone might mention that to Sony.

Daylife/Reuters Pictures used by permission

At a press conference Sunday afternoon in Japan, Sony Corp.’s Executive Deputy President Kazuo Hirai outlined some of the steps the company will take to protect users’ data. Hirai was flanked by two other executives, Chief Information Officer Shinji Hasejima and Senior Vice President of Corporate Communications Shiro Kambe.

One is hiring a “chief information security officer” to help prepare future defenses against hacking attacks. The company will also set up a new data center in San Diego, with “more advanced security.” Hirai said the new center would have better detection systems in place, as well as enhanced data encryption…

Hirai was not specific about whether users might be compensated for any losses to their credit cards. About 10 million credit cards were registered, representing 77 million users. Sony said there is as yet no evidence of credit card fraud, though several news outlets reported that hacker groups were offering them for sale. Sony Network Entertainment, the U.S. subsidiary of Sony, is working with the Federal Bureau of Investigation to find out more and possibly prosecute the hackers.

The executives were not clear what vulnerability the hack exploited, whether it was a known problem or a newly discovered one. They would not discuss details…

Sony reiterated that the credit card information was encrypted, although the password and login data were not.

While Sony isn’t offering direct compensation to users – at least not yet – the company said it would offer a 30-day subscription to PlayStation Plus while Qriocity customers will get an extra 30 days of service for free…

Senator Richard Blumenthal of Connecticut wrote to Sony this week, asking why the company took several days to notify users that their data might have been stolen. He also called for Sony to provide PlayStation Network users with financial data security services.

Five more years till Blumenthal runs for president. And counting. [He can taste it.]

Sony lost $450 million last year – paid Stringer $4.5 million + stock options
Daylife/Reuters Pictures used by permission

Sony PlayStation gamers expressed shock and disappointment on Wednesday at a massive data hack in which their names, addresses and credit-card details might have been stolen from the PlayStation Network.

Shoppers at London video-games stores said they might leave the network, PSN, which allows them to play games with 77 million other members and buy games online, while some gamers writing in online forums called for a boycott of Sony products…

Sony warned earlier that unidentified hackers had stolen the personal details of its 77 million user accounts, in one of the biggest-ever Internet security break-ins.

The Japanese electronics giant advised users, almost 90 percent of whom are based in Europe and the United States, to change any common passwords they also used for other services.

It said children with accounts established by their parents might have had their data exposed.

“If you think the gamers are pissed over at playstation blog, wait until the Mums get wind of this,” wrote senior member barrybarryk on the PS3news.com online forum…

Sony pulled the plug on the network eight days ago but did not tell the public about the stolen data until Tuesday.

Phew! I don’t know of any industry guaranteed safe from attack. I have some experience with procedures that appear to work – when enforced with diligence and consistency. I’m not certain about any IT departments other than those I personally could vouch for, though.

Oh yeah – just discussing this with another geek in the family – remember all the crap that’s happened at Sony from the closing of research centers to failed security to snooping on users has happened on Stringer’s watch.

Sony has told owners of older models of its PlayStation 3 console to stop using the machine because of a problem with the PlayStation Network.

The problem is affecting people using the older versions of the PlayStation 3, called the “Fat” model. The problem isn’t affecting the newer PS3 Slim systems that have been on sale since September last year…

“We hope to resolve this problem within the next 24 hours,” a statement reads. “In the meantime, if you have a model other than the new slim PS3, we advise that you do not use your PS3 system, as doing so may result in errors in some functionality, such as recording obtained trophies, and not being able to restore certain data.

“We believe we have identified that this problem is being caused by a bug in the clock functionality incorporated in the system.”

Uh, OK, folks. You heard the man. Obey!