The PlayStation Network has only been back up a couple days and it was taken down again today briefly because of a web exploit. Sony had to turn off the Sign-in feature for it’s PlayStation.com, Qriocity, PlayStation blogs, forums and gaming websites as well as Music Unlimited on the Web. After the services were taken down Sony had this explanation to give:
“We temporarily took down the PSN and Qriocity password reset page,” Sony spokesman Patrick Seybold said in a posting to its PlayStation blog. “In the process of resetting of passwords there was a URL exploit that we have subsequently fixed.” Contrary to some reports, the site had not been hacked, Seybold said.
According to ComputerWorld the website error on the login page would allow any user to take over an account as long as they had the victims birth date and email address. This comes shortly after Sony had tried to re-assure users that they had taken sufficient steps to prevent attacks on their accounts. Sony still needs to be careful of these mistakes.