XBOX 360 and PlayStation Portable ISO Forums Hacked
Posted by: Timothy Weaver on 02/01/2017 05:24 AM
[
Comments
]
An unknown hacker breached the XBOX 360 and PlayStation Portable ISO forums back in 2015 and compromised an estimated 2.5 million gamer accounts.
The breach is just now being reported and, as usual, users are being advised to change their passwords. The breach is said to have compromised email addresses, account passwords and IP addresses.
Jonathan Sander, vice president at Lieberman Software, said: “As breach after breach has shown that using the same username and password for multiple sites is a bad idea, you would have to imagine this group would have gotten that message by now. When you see a dump of passwords hit a much less techie site, you can be sure that huge number of the victims are going to have to go around changing their credentials on the many sites where they foolishly used the same details over and over.”
However, it may be too late to rectify the damage. Jeff Hill, Prevalent Director, Product Management at the security firm, Prevalent, said: "Like rushing to close the barn door after most of the horses have escaped, changing the passwords at the time of an announcement of a breach may provide some comfort but precious little protection. The initial breach occurred in September 2015, giving the attackers 17 months to operate undetected, more than enough time to find and exfiltrate enough data to profit greatly from their efforts."
The stolen data was most likely sold on the dark web and users should stay vigilant and watch out for phishing scams.
Source: SCMagazine
The breach is just now being reported and, as usual, users are being advised to change their passwords. The breach is said to have compromised email addresses, account passwords and IP addresses.Jonathan Sander, vice president at Lieberman Software, said: “As breach after breach has shown that using the same username and password for multiple sites is a bad idea, you would have to imagine this group would have gotten that message by now. When you see a dump of passwords hit a much less techie site, you can be sure that huge number of the victims are going to have to go around changing their credentials on the many sites where they foolishly used the same details over and over.”
However, it may be too late to rectify the damage. Jeff Hill, Prevalent Director, Product Management at the security firm, Prevalent, said: "Like rushing to close the barn door after most of the horses have escaped, changing the passwords at the time of an announcement of a breach may provide some comfort but precious little protection. The initial breach occurred in September 2015, giving the attackers 17 months to operate undetected, more than enough time to find and exfiltrate enough data to profit greatly from their efforts."
The stolen data was most likely sold on the dark web and users should stay vigilant and watch out for phishing scams.
Source: SCMagazine
Comments
