Barely two days after service restoration, Sony PlayStation Network is in hot soup again. You’d have assumed that your PSN account would be more secure than ever after the company spent almost a month working on it. Sorry to disappoint you, but that’s not the case.
As reported by Nyleveia, PSN’s reset system is flawed. All it takes for attackers to change your PSN password is your e-mail address and birthday — information that the original hackers already possess after the first attack.
In order to test the exploit, Nyleveia created a dummy account and supplied the e-mail and birthday to the tipster. True enough, the account password was successfully changed in just a minute.
The matter was brought to Sony’s attention. As a result, PSN sign-in has been disabled on a number of Sony websites.
Unfortunately this also means that those who are still trying to change their password via Playstation.com or Qriocity.com will be unable to do so for the time being,” a Sony statement confirmed.
This is due to essential maintenance and at present it is unclear how long this will take.
In the meantime you will still be able to sign into PSN via your PlayStation 3 and PSP devices to connect to game services and view Trophy/Friends information.
It’s advised that you change the e-mail address associated with your PSN account to safeguard it.
I’m pretty sure this is not part of Sony’s “Welcome Back” package everyone has been talking about.