Who else is jumping ship?

[theENIGMATRON]

Put the console down and Enjoy some of the Sun!!
You know some Summer it will be shitty weather!!

[YorkshirePud]

im actually not missing it either, genuinely i've been getting stuff done, the down time doesnt bother me again its just the data loss, personally im not bothered as long as it doesnt affect me, sounds selfish i know.

[InfiniteStates]

...but i take dim views on any sort of privacy breach/scamming n all that type of stuff, i am a very careful and very private person..just not happy about it.

Okay sony had a blip, but why should i have to deal with it like everyone else, like it is "ok, we'll get over it because im a sony fan".

Have a read of twitter, the fanboys sucking on sonys lollipop are a joke, just because they ain't got money or cards linked to accounts it's all fine lol.

It's not about being a Sony fan. Identity fraud is a risk we all run in a lot of ways. Who's to say the next threat won't be from Amazon/Play/ShopTo/whatever getting hacked? Or another civil servant leaving a laptop or CD on a train? Or a fake ATM face? Or a sneaky camera in a shop pointed at the CC machine? Or some pikey fucktard rooting through your bin? Or someone just out and out stealing your post? Or whatever else I can't think of?

Burning an aspect of your life because there is the risk of threat doesn't make sense to me. Following that logic, I may as well go and live on a self-sufficient farm in Wales and cease all contact with the outside world.

IMO there is only so much you can do in a preventative capacity, but it is always handy to have a reaction plan in place as well, because these arseholes will always find a way.

More to the point.. i shouldn't have to pay £5 for a membership to check my credit/accounts - sony need to pay it, not me.

Sony aren't responsible for all the other avenues of attack available to identity thieves.

sorry, i cannot defend sony on this.. it isn't OK.

I don't think anyone is saying it's ok - it's just an overreaction to jump ship.

[theENIGMATRON]

Well my views on data is pretty shocking!!
I know what data is available out there and what company can access it and its pretty scary.

Experian or an example. Put in your Current Address, and you Bank Account details and it will give you all your previous addresses.
Current Creditors, how much you owe out, your last payments, What funds are available to you on credit.
fucking Everything!! am shocked!!

Another one that has Mass amounts of data with Everyone is Sagepay.
They are the biggest online Payment gateway.
You make a payment on there, they have access to your Current address, Previous Addresses, and Also addresses you have made a payment for and had it delivered to a different address.
Even tho you may of not done it on Sagepay this data is recorded somewhere.

They do a risk assessment on you each time you pay for Something,
Lets say my Address is X and i want it delivered to Z.

6 months ago i done to payments with site that DOES NOT USE SAGEPAY.
and paid using my card from Address X and asked for it to be delivered to Z.
If i went onto a website that uses sagepay as a Gateway, they do an assessment on you and tell the customer if your safe.
They somehow have access to details that are stored somewhere. and as you have made to payments and had something delivered to address Z before your a Low Risk.

If its a first time getting something delivered to address Z your a High Risk, this gets flagged and the owner of the site can speak to sagepay, Sagepay cannot give any details about you, But they have enough data on there to make you shit yourself.


I only know alot of this as i do alot of work with Shopping Carts and a Sagepay integrations so am on the phone to them alot!
Its amazing some of the things i have been told.

[InfiniteStates]

Well my views on data is pretty shocking!!
I know what data is available out there and what company can access it and its pretty scary.

Experian or an example. Put in your Current Address, and you Bank Account details and it will give you all your previous addresses.
Current Creditors, how much you owe out, your last payments, What funds are available to you on credit.
fucking Everything!! am shocked!!

But that's what Experian do primarily. They are our parent company and credit checking is their raison d'etre. They were brought in by the government when all the banks started going tits up a while back.

I work for Experian QAS (which stands for Quick Address Software). We make applications that compile primarily address data and also hang a load of other data of it like grid co-ordinates or gas meter numbers or whatever.

Chances are, if you use a website where you put in your postcode and it fills out the rest of your address, it's using our ProWeb API underneath.

However, we also write NameTracer Pro, which the police will use to find you if you're naughty. For this we use the Full Electoral Register, which is extremely sensitive. This data is restricted to any employees except those that require it, and even then you will only be granted temporary access. We snowball that data over time to keep a historical record of where you've lived for the police.

But it is only the police that are able to buy this data (and obviously Experian have it, which is why they know your previous addresses. It only goes back 7 or 8 years BTW). All other companies can have access to National Canvasse data, which is optional - your name only appears on here if you don't tick the boxes that say "share my data" or "send me spam" on application forms.

But the point is, this is not even financial information yet it is treated with utmost classification. The server it's stored on isn't even connected to the same network as the internet. But that is a compulsory data set. But there is also the other one I mentioned that anyone can gain access to if they want. So for the majority of people, your names and addresses are pretty much already available.


P.S: if you want to know if you're on the National Canvasse, PM me your name and postcode

[DJ-Daz]

Put the console down and Enjoy some of the Sun!!
You know some Summer it will be shitty weather!!

Already there, cranked up the grammy sat outsite listening to Rattle and Hum, had a BBQ for dinner.
No beer though.

[theENIGMATRON]

Yer i know about the Postcode thingy Majiggy.
We use it on our System, but its like outdated by 6 years or so haha!!

And i know about Experican we used to buy Bulk data from them when i used to work on Sales. That was Name, Address and Contact numbers emails etc of companys.

But i know again it can be bought for homes too if you dont opt out from people like BT and other shitty ass company's that sell on your details!

Then i used to pay experian X month to keep an eye on my own details credit etc, and was pretty god dam shocked at what i found out :O

[InfiniteStates]

Then i used to pay experian X month to keep an eye on my own details credit etc, and was pretty god dam shocked at what i found out :O

Yeah, CreditExpert. That's what I get for free, but it's not much to buy. And it is good for piece of mind: they send me a monthly report saying about credits checks, and what have you, and they will text me if someone tries to get credit (like they did when I bought our current car).

I'm not trying to sell it - Experian are fucking huge. They don't need me viral marketing one of their smaller services. It's just nice to have when you think your details might be abused.

They used to do the first month for free - so you could even sign up just for a month while this whole mess blows over. But the wankers could come out of the woodwork at any time. It will take them a while to work through however many millions of records they have...


In other news, I see Sony are saying that our details where in fact encrypted. But we all know how awesome their encryption is, don't we...

[theENIGMATRON]

Well if its Encrypted then i question HOW.

The example i provided on another thread about Encrypting
The only way to Decrypt the Hash is to use your Password

use your password and it Decrypts your data.... no system password or decryption key!
i would of not thought about it any other way.

And its impossible down to maths and machine power ATM!!! to break a hash key without its password

When i say password, that does mean you cannot use brute force / library to guess the password, but what would have to be done for every user...........
and with todays passwords it would not work

[YorkshirePud]

I'm very careful myself, all my passwords are fiendish and only a few people know my "real world" persona (ill kill you eventually dave bwuahahaha)

didnt stop someone ordering some domains via my paypal, fuck knows how that ever happend