The Information Commissioner's Office (ICO) is to investigate Sony over the ongoing hacking scandal on PlayStation Network, it has been confirmed.
ICO is a non-departmental public body reporting directly to Parliament and deals primarily with the Data Protection Act and other related legislation.
Speaking to sister siteEurogamer, officials have confirmed that it will investigate Sony in order to discover whether proper security safeguards were taken.
"The Information Commissioner's Office takes data protection breaches extremely seriously," said a representative. "Any business or organisation that is processing personal information in the UK must ensure they comply with the law, including the need to keep data secure.
"We have recently been informed of an incident which appears to involve Sony. We are contacting Sony and will be making further enquiries to establish the precise nature of the incident before deciding what action, if any, needs to be taken by this office."
Although the exact nature and sophistication of the hacker attack is not clear the fact that Sony has already confirmed that passwords, and user data such as names and addresses, have been obtained implies that they were not properly encrypted - or not encrypted at all.
The latter in particular could cause Sony considerable legal and publicity problems if true, although currently much of customer's anger is directed at the perceived slowness of the company's approach to the problem and the lack of information on the breach.

http://www.gamesindustry.biz/article...ver-psn-breach
...

Users told: We believe your details have been taken

PlayStation Network customers are beginning to receive email warnings regarding the service's extraordinary security threat.
In a mass-email the PlayStation firm writes:

“We believe that an unauthorized person has obtained the following information that you provided: name, address, country, email address, birth-date, PlayStation Network/Qriocity password and login, and handle/PSN online ID.”
It is likely that the email was sent to every single active PSN user.
Sony announced in January this year that over 69 million people have registered a PlayStation Network account.
Yesterday Sony revealed that the data of "possibly all" PSN users had got into the hands of an unauthorised individual.
So far the stolen information has not led to reports of illicit credit card activity or identity theft, Sony claims.
“Not at this point in time,” the firm said yesterday.
It cannot be ruled out that credit card data was taken as part of the hack, Sony added, and judging by the perceived scale of the security alert, the likelihood of PSN credit card fraud is high.
In the mass-email, the company continued:
“It is also possible that your profile data, including purchase history and billing address (city, state, zip), and your PlayStation Network/Qriocity password security answers may have been obtained.
“If you have authorized a sub-account for your dependent, the same data with respect to your dependent may have been obtained. While there is no evidence that credit card data was taken at this time, we cannot rule out the possibility”.
Since the announcement last night, a flood of PSN users have asked their banks to change their credit card details.
Passwords have been wiped and some credit ratings have been put on 'fraud alert'
http://www.develop-online.net/news/3...-for-PSN-users
...

Sony's PSN terms and conditions suggest the company isn't liable for the loss of customers' personal information.

As spotted by Edge, the firm's T&Cs read: "We exclude all liability for loss of data or unauthorised access to your data, Sony Online Network account or Sony Online Network wallet and for damage caused to your software or hardware as a result of using or accessing Sony Online Network."




However, the Information Commissioners Office, an independent UK authority set up to uphold information rights in the public interest, told the site: "While we are unable to say where the data is being stored at present, if it was in the UK, this clause would not free them from their obligations under the UK Data Protection Act.

"If we found a breach, one of the actions we could take would be to issue an undertaking, which is an agreement between the ICO and the company that if they are handling personal information they have to bring about set improvements in order for them to be compliant with the act."

The ICO added: "If the company is not compliant with the act within a certain time limit, further action would be taken and we might consider an enforcement notice or issue a monetary penalty. For serious breaches of the act, we can issue a monetary penalty up to £500,000."

The PlayStation Network has been out of action for a week following a security breach that has resulted in the theft of customers' personal data

http://www.computerandvideogames.com...VG-General-RSS ...

Execs at Cohort, Zoe Mode, Curve and Doublesix express their views

The substantial security threat that has rocked the PlayStation Network could trigger widespread mistrust in digital distribution, a group of studios have said.
Several leading digital games studios have told Develop the infamous PSN hack may not only impact on Sony’s troubled service, but the digital distribution process as a whole.

“There’s a real concern that PSN users will have lost a lot of trust,” said Lol Scragg, CEO of Dundee studio Cohort.
“The PSN market could well decrease after this,” he said.
“There are so many issues for consumers to think about now”.



Cohort is set to close down in a matter of weeks, and its final game – Me Monstar – could miss its release due to the ongoing PSN blackout.
“Our concern is that people just will not be able to purchase our game as it launches next week,” Scragg said.
A ‘LITTLE STEP BACK’

Scragg’s views are to an extent echoed by Ste Curran, the creative director of Kuju Entertainment's Zoe Mode studio in Brighton.
“From my perspective, the bigger issue is not about PSN, but confidence in digital distribution generally,” Curran said.
“For every story like this that breaks in the mainstream press, consumer confidence about their details being safe is eroded. Confidence [in online transactions] has been building up, and I think will continue to, but this is a blip. It could be a little step back,” he added.
Zoe Mode’s music-based puzzle game, Chime Super Deluxe, launched on the PlayStation Network late in March.
One studio – speaking anonymously to Develop – said the network downtime has cost them thousands of pounds. Yet Curran said it would be hard to quantify revenue losses.
He also appeared convinced that the backlash against Sony has more bark than bite.
“There’s a lot of noise on the internet right now about people saying ‘oh I’ll never use PSN again etcetera’, but a lot of that is due to this ongoing rivalry between Xbox 360 and PlayStation 3 fanboys, and I think a lot of these comments of abandoning PlayStation are from people that don’t have a console in the first place,” he said.
Curran’s faith in digital distribution has not been significantly affected by the PSN data scare.
‘IT GOES BEYOND PSN’

“Digital distribution is the future, and it’s awesome,” he said.
“I just think people will be a bit more hesitant to [buy content digitally] like this in the future. Not just on PSN, but on Xbox 360 and other non-game related services as well.
“I don’t think this is a case of people thinking PSN is vulnerable. This is about every single digital distribution system”.
Yesterday Sony said it shut down the PlayStation Network for seven consecutive days after a “malicious” attack on the online system.
Credit card details, user information and passwords have been compromised. The issue may affect every single PSN user, Sony said. More information can be found here.

Ed Fear, publishing producer at London-based Curve Studios, remains faithful that Sony will resolve the issue.
“I’m concerned that users will be wary of re-entering their credit card details into the system, which will likely affect PSN sales,” he said.
“Naturally, there’s an issue of the lost sales over this period where the system has been down.
“But ultimately, I think Sony will sort us and everyone else out – they’ve done a lot of work encouraging developers to PSN and they’re not going to let all that go to waste now.”
In February, Curve Studios released on PSN its distinct platform title Explodemon.
‘WE CAN HOLD OUR RELEASE BACK’

The studio head at fellow UK PSN studio, Doublesix, said it was unfortunate that a service like the PlayStation Network has been out under such an unflattering light.
“It's obviously a sad turn of events,” he told Develop.
“Our colleagues at Sony have such a great games service and every day that it's down hurts the wider gaming community.
“Our studio hasn't been affected too greatly, we were just preparing a release, but we can afford to hold it back. Our sympathy goes out to the studios who've only just released a game or were due to release last week.

“My greater concern is how this will affect video game consumers behaviour across all the digital platforms, including PSN, XBLA, Steam, iTunes and the rest,” he said.
“Consumers have been more ready to purchase games and other content online, and this may rock their confidence, become a set back that affects us all.
“Of course, it's only a blip, but one that the world of digital games delivery could do without. Only time will tell.”
http://www.develop-online.net/news/3...t-could-follow
...

Security alert as millions of PlayStation Network users are told of ‘malicious’ attack

An illegal hack into the PlayStation Network may have exposed the personal data of every single user, Sony has warned.
In an admission of the sheer enormity of the security alert, Sony said “our investigation indicates that all PlayStation Network/ Qriocity accounts may be affected”.

Earlier, the company said a “malicious” hack has compromised key info of PlayStation Network users – including credit card data.
Now the platform holder has revealed the attack could put every single account at risk.
In a notice pubished on the PlayStation Blog, the company was asked if all user information had been compromised.
“In terms of possibility, yes,” the company said.
Sony announced in January this year that over 69 million people have registered a PlayStation Network account.
The company added, however, that it has not received any information that PSN data has been used illicitly.
“Not at this point in time,” the firm said.
It cannot be ruled out that credit card data was taken as part of the hack, Sony added, and judging by the perceived scale of the security alert, the likelihood of PSN credit card fraud is high.
A notice will be sent to every single PlayStation Network account holder to warn of identity fraud, Sony said.
The PlayStation 3 manufacturer said it had shut down the PlayStation Network for the past week due to “malicious actions”.
Data thought to be at risk includes user's names, addresses, emails, date of birth, PSN password and login information.
‘BE ON ALERT’

The hack occurred between April 17th and 19th, Sony said.
The company advised US account holders that they can place a “fraud alert” on their personal credit file.
Sony is conducting “a full and complete investigation into what happened”, and claims to have “taken steps to enhance security and strengthen our network infrastructure by re-building our system to provide you with greater protection of your personal information”.
“Be especially aware of email, telephone, and postal mail scams that ask for personal or sensitive information” read a statement.
“Sony will not contact you in any way, including by email, asking for your credit card number, social security number or other personally identifiable information.
"If you are asked for this information, you can be confident Sony is not the entity".
Sony added that it may offer a refud to PSN users.
"When the full services are restored and the length of the outage is known, we will assess the correct course of action," the firm said.
http://www.develop-online.net/news/3...d-by-data-hack
...

...

Sony Computer Entertainment has finally issued a detailed statement on the PlayStation Network downtime, confirming the possibility that private customer information may have been compromised as a result of "malicious actions."
Although Sony said it expects to have PSN up and running within a week, it admits that between April 17 - April 19, the service suffered an "illegal and unauthorized intrusion" and that the name, address, country, email address, birthdate, PlayStation Network/Qriocity password and login, and PSN online ID of users have been obtained by an unauthorised person.
"While there is no evidence at this time that credit card data was taken, we cannot rule out the possibility," wrote Sony's Patrick Seybold on the PlayStation blog.
Out an abundance of caution we are advising you that your credit card number (excluding security code) and expiration date may have been obtained.

Patrick Seybold, SCEA

The PlayStation Network currently has over 75 million registered users accessing services on PlayStation 3, PSP and PC.
"If you have provided your credit card data through PlayStation Network or Qriocity, out of an abundance of caution we are advising you that your credit card number (excluding security code) and expiration date may have been obtained."
"For your security, we encourage you to be especially aware of email, telephone, and postal mail scams that ask for personal or sensitive information," continued Seybold.
"When the PlayStation Network and Qriocity services are fully restored, we strongly recommend that you log on and change your password. Additionally, if you use your PlayStation Network or Qriocity user name or password for other unrelated services or accounts, we strongly recommend that you change them, as well."
Sony's online PlayStation service was taken offline last Wednesday with few updates given to users as to why they were unable to access multiplayer gaming, purchase content and use online functions for the console.
The full message from Sony Computer Entertainment follows:
"Thank you for your patience while we work to resolve the current outage of PlayStation Network & Qriocity services. We are currently working to send a similar message to the one below via email to all of our registered account holders regarding a compromise of personal information as a result of an illegal intrusion on our systems. These malicious actions have also had an impact on your ability to enjoy the services provided by PlayStation Network and Qriocity including online gaming and online access to music, movies, sports and TV shows. We have a clear path to have PlayStation Network and Qriocity systems back online, and expect to restore some services within a week.
We're working day and night to ensure it is done as quickly as possible. We appreciate your patience and feedback.

Valued PlayStation Network/Qriocity Customer: We have discovered that between April 17 and April 19, 2011, certain PlayStation Network and Qriocity service user account information was compromised in connection with an illegal and unauthorized intrusion into our network. In response to this intrusion, we have:

• 1. Temporarily turned off PlayStation Network and Qriocity services;
• 2. Engaged an outside, recognized security firm to conduct a full and complete investigation into what happened; and
• 3. Quickly taken steps to enhance security and strengthen our network infrastructure by re-building our system to provide you with greater protection of your personal information.

We greatly appreciate your patience, understanding and goodwill as we do whatever it takes to resolve these issues as quickly and efficiently as practicable.Although we are still investigating the details of this incident, we believe that an unauthorized person has obtained the following information that you provided: name, address (city, state, zip), country, email address, birthdate, PlayStation Network/Qriocity password and login, and handle/PSN online ID. It is also possible that your profile data, including purchase history and billing address (city, state, zip), and your PlayStation Network/Qriocity password security answers may have been obtained. If you have authorized a sub-account for your dependent, the same data with respect to your dependent may have been obtained. While there is no evidence at this time that credit card data was taken, we cannot rule out the possibility. If you have provided your credit card data through PlayStation Network or Qriocity, out of an abundance of caution we are advising you that your credit card number (excluding security code) and expiration date may have been obtained.
For your security, we encourage you to be especially aware of email, telephone, and postal mail scams that ask for personal or sensitive information. Sony will not contact you in any way, including by email, asking for your credit card number, social security number or other personally identifiable information. If you are asked for this information, you can be confident Sony is not the entity asking. When ...

News via http://www.psp-hacks.com/2011/04/25/...ally-released/

Ready for the masses — DaedalusX64 BETA 3 Update! It’s still beta 3, but it’s an update addressing several issues found in the initial release: improved stability, several speed enhancements and the added support for cheat codes. One release at a time… The N64 emulation movement is growing, getting better.



The above video is from DaedalusX64 BETA 3; the first release.
DaedalusX64 BETA 3 CHANGELOG

Salvy:

• Fixed multiple suns glitch in Zelda
• Fixed wrapping issues in Zelda
• Added cheat support (routines and format based from 1964)
• Front-end for cheats
• Rewrote how we generate cic codes (code is 90% smaller now)
• Only update viewport when it changes
• Unlocked extra memory for all psps, except phat of course (note : if using a loader, make sure is supported)
• Rewrote display list PC stack (this heavily based from Rice plugin)
• Fixed error I did in Patch_Hacks (was causing the oshle scanning fail in certain ROMS)
• Fixed trees in Dream Land (SSB) (no need to add fraction in integer part)
• Fixed bug that caused PSP screen to stretch when tv out cables were connected
• Fixed nasty texture to [COLOR=blue !important][COLOR=blue !important]work[/COLOR][/COLOR] along blendmode maker in Combiner Explorer (just press triangle to use it)
• Corrected (huge)mistake from 597 that caused slim cache to be ignored (small speed up in slim and newer models)
• Made osAiSetNextBuffer thread safe, also added several asserts to make sure we handle everything.
• Removed Conker shadow hack (no longer needed, generic blendmode takes care of the shadow)
• Ignore IMEM transfers for speed (we don’t use low-level RSP plugin for the PSP version anyways)
• Simplified Sprite2D
• Implemented correctly DLParser_TexRect_Last_Legion (fixes [COLOR=blue !important][COLOR=blue !important]BSOD[/COLOR][/COLOR] in sub menus)
• Use 32bit screenmode for tv out
• Force struct alignment for our ucodedefs (generates better code)
• Added several blendmodes (Salvy, Corn, Bdacanay)

Corn:

• Small optimization for graphics loading/adding triangles. Some minor optimizations to the VFPU TnL. Optimized loading vector planes for clipping
• Alpha channel gets passed along even when doing lighting on a tris.
• Fixed critical rendering bug (and Dlist counter bug) in Conker. Optimized triangle rendering in Conker.
• Speed up using early FRONT/BACK tris culling in software. Added display render stats on screen as an option (only available in Display list debug mode)
• Made CPU rendering compatible with VFPU rendering (insert-matrix and ENV MAP)
• Implemented Env mapping which is done (very fast) in the VFPU (Fixes SM64 stars and OOT stones, SSV ship)
• Some optimizations on Bcopy(), memcpy() and CRC()
• Improved hack for Wonder project J2 with a speed up (require setting texture check to 4 or so)
• Fix the chopped off graphics(bug) in the ROM selector menu
• Optimized Proj matrix sceGU load (Only reaload Project matrix to sceGU if its updated)
• Fixed blocks in New Tetris lining up backwards
• Replaced swizzle_fast with Raphael’s version

Download Here ...

News via http://wololo.net/wagic/2011/04/26/v...of-of-concept/

Developer HacKmaN, who works closely with Total_Noob on TN Hen, just released a video showcasing TN Hen on a 6.38 OFW.
A few weeks ago, Total_Noob had announced in this interview that he was investigating Kernel exploits on the latest firmware. He then confirmed he was onto something, by showing a video running a kernel exploit POC on a PSP running OFW 6.38.



Today this video shows that porting TN Hen to the latest firmwares seemed like a piece of cake for this talented dev.
In the interview, as well as in his recent videos, Total_Noob (and HacKmaN) stated that this Hen would not be released because of the scene’s attitude towards developers and the whole debate about isos.
Comments about the video on youtube show a mix of angry people, people who promise that 6.38 users are not pirates, that they will “behave”, but we all know how it goes: as long as Hen does not support piracy, “nobody” cares about it, and most of the ones who care just come to insult the lack of iso support.
Total_Noob is now following the path of Davee and Team Typhoon, who had a working Hen on firmware 6.20 more than a year ago, but never released it because of the scene’s attitude.
As far as I’m concerned, I’ve been in the scene long enough to know this: the scene is made of 95% of morons who are in this only for piracy. I fight for the remaining 5%. ...