..

This design element requires flash & JavaScript to be enabled to play. Download the latest version of flash from Adobe.com.

commissum is a company one hundred percent focused on the provision of information security advice and services. Our team has been providing the full range of these services to a broad cross-section of businesses and government organisations for over twenty years.

commissum'ko-mis-sum, n. that which is entrusted [Latin]

Sony Locks 93,000 User Accounts After Unauthorised Activity

Tue 18 Oct, 2011 // Chris Allan
IT Security

Not long after the hacking of Sony's PlayStation Network and Online Entertainment Service, four months ago, that left over 100 million users exposed to fraud, Sony appointed Philip Reitinger as their first chief information security officer (CISO). A cyber security expert with plans of addressing the current security problems at Sony. With hope of encouraging the public and helping to restore consumer confidence after the massive attack that left many customers vulnerable and worried over personal information being stolen.

But again Sony faced their worst fears and had to lock down 93,000 user accounts after detecting a large amount of unauthorised log-in attempts on it's Playstation Network, Sony Entertainment Network and Sony Online Entertainment.

A statement was released on the 12 of October, by Sony, and confirmed that there has been “approximately 93,000 accounts (PSN/SEN: approximately 60,000 accounts; SOE: approximately 33,000) where the attempts succeeded in verifying those accounts’ valid sign-in IDs and passwords, and we have temporarily locked these accounts.”

Fortunately credit card numbers associated with these accounts are not at risk and only a small number of those 93,000 accounts showed additional activity prior to being locked. Sony has assured their users that there is a continuing investigation to realise the extent of unauthorized activity, on any of those accounts, as confirmed within the statement.

Philip Reitinger, Sony's CISO, posted on the Playstation Blog before the statements was released. Explaining to the Sony community that “These attempts appear to include a large amount of data obtained from one or more compromised lists from other companies, sites or sources.”

The unauthorized attempts to verify valid user accounts on Sony's Networks used very large sets of sign-in IDs and passwords and carried out between October 7 and 10.

Reitinger continued “As a preventative measure, we are requiring secure password resets for those PSN/SEN accounts that had both a sign-in ID and password match through this attempt. If you are in the small group of PSN/SEN users who may have been affected, you will receive an email from us at the address associated with your account that will prompt you to reset your password.”

Sony have encouraged users to ensure that their username and passwords must be strong and not associated to any other online accounts or services.

It is vital for larger organisations who deal with private and sensitive information, to realise the importance of Security Testing, to help manage risks and vulnerabilities.

Find out more about the information security advice and services provided by commissum to ensure your data remains secure.

“We have been pleased to work with commissum who have provided us with services to address our Security Assurance requirements. commissum met our demands, as an organisation operating within the Legal Services sector, with the highest level of integrity, commitment and excellent level of service. We would have no hesitation in recommending commissum.”

Mr Kenneth P, IT Manager, National Legal Services

"commissum recently provided us with services to assess a web application and supporting infrastructure. I was impressed with the consultants throughout the project, by their technical knowledge, flexibility, open communication and willingness to go that extra mile. Of particular benefit was the sound advice given both during and after the engagement. By identifying vulnerabilities promptly, accompanied with practical recommendations on how to address them. We were able to implement improvements quickly. Good value, a job well done.”

JM, Infosec Analyst, International Investment Bank

"We engaged with commissum for the first time this year and found them highly professional and a pleasure to do business with. We were particularly pleased with the report provided which was of excellent quality, with an appropriate level of detail and clarity in its recommendations. I would happily refer others to commissum.”

Mr Billy K, IT Director, National Law Firm

"We are extremely pleased with the work carried out by the commissum team. All of the commissum staff were a pleasure to work with and maintained a high level of professionalism at all times. They were able to provide us with sound advice and guidance to make sure that we got the best value for money from our test and provided excellent communication and recommendations before, during and after the tests. I would strongly recommend commissum to other companies that are looking for peace of mind in relation to their IT security and I can say that we will use commissum again for future testing.”

Chris S, IT Officer - UK Housing Association

"commissum understood exactly what we needed and delivered excellent service on time, and on budget. Why can't all companies be like them!"

Mr Duncan M, Information Security Manager - National Building Society

Get in touch with one of our security consultants today

  • No obligation
  • Expert advice
  • Tailored solutions
"commissum was particularly responsive and the project was well managed under demanding conditions. I was very happy with the technical standard. Very good value for money as well”

Mr Kenneth Y, Head of IT Risk & Compliance, International Retail Bank

"I was very pleased with the work delivered by commissum from start to finish. The quality of reporting was excellent and the consultants very helpful with clear communication throughout the engagement. I would happily recommend commissum to others.”

Ms Louisa L, IT Manager, National Building Society

"commissum provided us with a high quality service. We found the project team helpful and flexible in responding to changes in requirement; the technical staff in particular were excellent. All commitments including deliverable timescales were met and I would have no hesitation in recommending commissum.”

Mr A Moretti, Executive Director for IT Security Risk Management, Global Investment Bank

"From the start the project went very smoothly despite the short notice. commissum maintained excellent communication throughout ........ their flexibility and responsiveness right up to the end of the project was of great value to us.”

Mr Keith H, Senior Business Manager - UK Local Government