The ‘external intrusion’ that caused Sony to yank the Playstation Network and resulted in the data theft of over 77 million customers is a major inconvenience to say the least. Precautionary steps such as canceling credit cards, changing passwords, and monitoring reports have become a priority with those fearful of identity theft. Online gamers have either moved on to other game networks or are stuck in a waiting rut. In the worst cases YouTube videos have been posted where children sulk and throw their Playstation 3 in the garbage.
Interesting reactions aside, the breach exposed Sony’s shoddy security measures. However it shouldn’t be a surprise. A quick Google search reveals that data theft happens quite commonly in business. Epsilon, an online marketing firm, was hacked a month ago in an incident that exposed customers of Verizon Communications, JPMorgan Chase, and Kroger Company. The fact is that data breaches are going to happen regardless of industry or stature.This doesn’t dismiss Sony of their responsibilities to their customers. They will suffer consequences for having a weak network though. Lawsuits, congressional hearings, and staining of public reputation come to mind. The story is far from over just yet.
Regardless of all the current hoopla a customer can take precautionary actions to safeguard their personal information. This list is not intended purely for the gaming community. Most of these steps can be applied across the board in regards to internet activity.
The major console manufacturers offer point cards for sell at most local stores. These redeemable cards take the place of credit and cash in online transactions. Using these will prevent private information such as billing addresses and card numbers from ever being stored directly in their databases.
Too often people use simplistic passwords that are easily guessed or cracked. A lot of people will also reuse that same password across every the site they visit. To make things a little harder for would be intruders try a somewhat lengthy sequence or phrase sprinkled with a few non alphanumerical symbols. Make sure to employ a unique password for each site visited. Security experts have also suggested a password manager such as KeePass or Last Pass.
More often than not, forgotten password retrievals use hint questions. Instead of direct answers, users should create responses that don't necessarily answer these questions, such as a peculiar phrase or additional question.
Social engineering is a trick in which people are befriended, threatened, or fooled into voluntarily giving up personal information. Just remember that a company will never ask for private information out of the blue. Do not respond with personal information to anyone over email, text, or messenger. Real companies tend to call or snail mail. And even then it’s a customer’s duty to judge if they’re dealing with a legit representative. Never click links embedded in emails. Customers are always better off opening their own browser and typing in their own URL. Intruders like to disguise email headers and reroute links to lookalike sites that will soak up user account info.
Common sense and vigilance will go a long way in protecting personal information from security fumbles and ill intentioned hackers. Sure there isn’t much that could have prevented the Sony breaches -- well besides Sony -- but that’s another story for another time. Consider this a friendly public service announcement from Iodine and the rest of the Press Pause Radio family. Also if none of this is new to you, please consider telling friends and family of these methods. Don’t let Grandma get herself into trouble.
Have any other suggestions about how to take security action? Please leave them in the comments section.