{"id":87860,"date":"2026-05-23T03:16:03","date_gmt":"2026-05-23T03:16:03","guid":{"rendered":"https:\/\/bisedoshqip.de\/its-nuts-major-ps5-security-vulnerability-exposed-and-were-all-at-risk\/"},"modified":"2026-05-23T03:16:03","modified_gmt":"2026-05-23T03:16:03","slug":"its-nuts-major-ps5-security-vulnerability-exposed-and-were-all-at-risk","status":"publish","type":"post","link":"https:\/\/bisedoshqip.de\/sq\/its-nuts-major-ps5-security-vulnerability-exposed-and-were-all-at-risk\/","title":{"rendered":"&#8216;It&#8217;s Nuts&#8217;: Major PS5 Security Vulnerability Exposed, And We&#8217;re All At Risk"},"content":{"rendered":"<p><br \/>\n<\/p>\n<div id=\"\">\n<figure class=\"picture\" data-uuid=\"02c666ee9db27\"><a class=\"scanlines\" title=\"'It's Nuts': Major PS5 Security Vulnerability Exposed, And We're All At Risk 1\" href=\"https:\/\/images.pushsquare.com\/02c666ee9db27\/its-nuts-major-ps5-security-vulnerability-exposed-and-were-all-at-risk-1.large.jpg\"><img fetchpriority=\"high\" decoding=\"async\" src=\"https:\/\/images.pushsquare.com\/02c666ee9db27\/its-nuts-major-ps5-security-vulnerability-exposed-and-were-all-at-risk-1.900x.jpg\" width=\"900\" height=\"506\" alt=\"'It's Nuts': Major PS5 Security Vulnerability Exposed, And We're All At Risk 1\"\/><\/a><figcaption class=\"caption\"><em class=\"credit\"><span class=\"\"\/> Image: Push Square<\/em><\/figcaption><\/figure>\n<p>A major PSN security vulnerability has been exposed, and any one of us could become a victim unless Sony tightens up its processes.<\/p>\n<p><a href=\"https:\/\/www.pushsquare.com\/news\/2026\/05\/prominent-ps5-podcasters-account-hacked-social-engineering-concerns-amplified\">Earlier this week<\/a>, I wrote a story about <a href=\"https:\/\/youtu.be\/DJbuo3tzV2c?t=2697\">Sacred Symbols<\/a> host Colin Moriarty, who was the victim of a social engineering scam which <a href=\"https:\/\/www.pushsquare.com\/news\/2026\/05\/prominent-ps5-podcasters-account-hacked-social-engineering-concerns-amplified\">almost resulted in his PSN account being stolen from him<\/a>.<\/p>\n<p>Now a <a href=\"https:\/\/www.youtube.com\/watch?v=DJbuo3tzV2c\">new podcast<\/a>, in which Moriarty regales the entire sordid tale, has shed light on a potentially catastrophic flaw in Sony\u2019s system, which could potentially affect us all.<\/p>\n<aside class=\"object object-youtube\">\n<figure class=\"youtube\" data-videoid=\"DJbuo3tzV2c\" data-start=\"2697\" data-src=\"https:\/\/www.youtube.com\/embed\/DJbuo3tzV2c?rel=0&amp;hd=1&amp;showinfo=0&amp;modestbranding=0&amp;autohide=1&amp;start=2697\">\n<p><iframe title=\"They Disguise It, Hypnotize It | Sacred Symbols, Episode 412\" width=\"800\" height=\"450\" src=\"https:\/\/www.youtube.com\/embed\/DJbuo3tzV2c?feature=oembed\" frameborder=\"0\" allow=\"accelerometer; autoplay; clipboard-write; encrypted-media; gyroscope; picture-in-picture; web-share\" referrerpolicy=\"strict-origin-when-cross-origin\" allowfullscreen><\/iframe><\/p>\n<\/figure>\n<\/aside>\n<p>Here\u2019s what you need to know:<\/p>\n<ul>\n<li>This is not necessarily a hole in Sony\u2019s network, and is not a hack in the traditional sense. It does not involve breaching the PSN and extracting information from a database.<\/li>\n<li>This does not involve phishing or extracting information from users via misleading webpages or emails.<\/li>\n<li>This is a social engineering scam which relies on the exposure of some minor personal details, such as an email address and a transaction date.<\/li>\n<\/ul>\n<p>When I learned of Moriarty\u2019s situation, I immediately contacted him to see if he\u2019d ever inadvertently exposed a receipt or transaction ID on social media or in a livestream.<\/p>\n<p>That\u2019s because his situation reminded me of a similar story I was loosely aware of from last year, involving <a href=\"https:\/\/www.numerama.com\/cyberguerre\/2147695-je-me-suis-fait-pirater-mon-compte-playstation-et-jai-decouvert-un-enorme-probleme-de-securite-chez-sony.html\">French journalist Nicolas Lellouche<\/a>.<\/p>\n<p>In essence, it\u2019s possible to commandeer someone\u2019s PSN account by taking advantage of sympathetic customer service representatives who will accept just a few pieces of personal information.<\/p>\n<p>These may include:<\/p>\n<ul>\n<li>A PSN username<\/li>\n<li>An associated e-mail address<\/li>\n<li>A transaction ID or purchase date<\/li>\n<\/ul>\n<p>If that seems unfathomable to you, <a href=\"https:\/\/x.com\/PorkPoncho\/status\/2057553908449550448\">X<\/a> (or Twitter) user <a href=\"https:\/\/x.com\/PorkPoncho\/status\/2057553908449550448\">PorkPoncho<\/a> put it to the test.<\/p>\n<p>According to his report, embedded below, he was able to access his sister\u2019s PSN account \u2013 with permission \u2013 by providing customer support with a minimal amount of easily accessible information, including two game purchases and the dates they were made.<\/p>\n<aside class=\"object object-tweet\"><!-- cache: oembed\/https:\/\/twitter.com\/porkponcho\/status\/2057553908449550448 @ 2026-05-23T01:17:09+01:00 --><\/p>\n<blockquote class=\"twitter-tweet\" align=\"center\"><p><span lang=\"en\" dir=\"ltr\">This will be a bit of a thread but I go into some stuff so bare with me\u2026 Off the back of the very public breach of <a href=\"https:\/\/twitter.com\/longislandviper?ref_src=twsrc%5Etfw\">@longislandviper<\/a>&#8216;s PlayStation Network account I&#8217;ve been doing a lot of research into the topic such as who attacks these accounts, why they do it, and how they go\u2026 <a href=\"https:\/\/t.co\/trut4hLwlS\">pic.twitter.com\/trut4hLwlS<\/a><\/span>\u2014 Poncho (@PorkPoncho) <a href=\"https:\/\/twitter.com\/PorkPoncho\/status\/2057553908449550448?ref_src=twsrc%5Etfw\">May 21, 2026<\/a><\/p><\/blockquote>\n<\/aside>\n<p>As Moriarty notes in his podcast, this information could easily be inferred from publicly available Trophy data; it\u2019d be reasonable to assume, for example, that if you started earning Trophies in <a href=\"https:\/\/www.pushsquare.com\/games\/ps5\/resident_evil_requiem\">Resident Evil Requiem<\/a> on 27th February, launch day, you may have bought it on the same day.<\/p>\n<p>Hackers may not know whether you purchased the game digitally or physically, but with enough attempts and with a sympathetic enough support agent, you may be able to relatively easily commandeer someone\u2019s account.<\/p>\n<p>Once inside, hackers are able to change email addresses, disable two-factor authentication, and remove passkeys \u2013 all without any further security blockades. Effectively, you\u2019ll be locked out of your account with no recourse.<\/p>\n<p>Moriarty acknowledges during the podcast that he was able to rapidly escalate his situation using his connections within Sony; many of us will not have the same privileges.<\/p>\n<p>In fact, prominent members of the fanbase have been struck with similar scams, <a href=\"https:\/\/x.com\/Hak00m_\/status\/1856790137252057590\">including Trophy hunter Hakoom<\/a>, who was never able to recover access to his account.<\/p>\n<p>Moriarty says he\u2019s passed everything he\u2019s learned on to Sony, and in fairness it does seem like the company is taking things seriously.<\/p>\n<p>But it\u2019s frightening to see how seemingly simple it is for <em>any<\/em> of us to have our accounts stolen; these accounts, of course, have our treasured PlayStation memories and, more importantly, potentially thousands of dollars of digital purchases attached.<\/p>\n<aside class=\"object object-tweet\"><!-- cache: oembed\/https:\/\/twitter.com\/longislandviper\/status\/2057243939376177213 @ 2026-05-23T01:18:49+01:00 --><\/p>\n<blockquote class=\"twitter-tweet\" align=\"center\"><p><span lang=\"en\" dir=\"ltr\">An update!<\/p>\n<p>I&#8217;m sorry I&#8217;ve been quiet, but I&#8217;ve spent the last couple of days learning as much as I can about PSN account theft: How long it&#8217;s been happening, why people are being affected, and so on. I&#8217;ve likewise exchanged a ton of emails with and spoken extensively on the\u2026 <a href=\"https:\/\/t.co\/b1e7VM2rin\">https:\/\/t.co\/b1e7VM2rin<\/a><\/p>\n<p><\/span>\u2014 Colin Moriarty (@longislandviper) <a href=\"https:\/\/twitter.com\/longislandviper\/status\/2057243939376177213?ref_src=twsrc%5Etfw\">May 20, 2026<\/a><\/p><\/blockquote>\n<\/aside>\n<p>I\u2019ll contact Sony to see if it has any comment on any of this, and I\u2019ll update if I learn more.<\/p>\n<p>In the meantime, I would encourage you to browse through your social media history and see if you did ever inadvertently expose any transaction IDs or receipts. It\u2019s probably best not to have those out in the public.<\/p>\n<p>I\u2019d also <a href=\"https:\/\/www.youtube.com\/watch?v=DJbuo3tzV2c\">encourage you to listen to Moriarty\u2019s story<\/a> \u2013 which is available outside of Patreon early for all to listen to <a href=\"https:\/\/www.youtube.com\/watch?v=DJbuo3tzV2c\">through here<\/a> \u2013 as it really gets into the nitty-gritty of what actually occurred here, and why it\u2019s something we should all be concerned about.<\/p>\n<p><!-- cache: html:pushsquare.com\/ssl\/ps5\/related-articles:201348 @ 1779502792 --><\/p>\n<aside class=\"block object-related\">\n<div class=\"body\">\n<p class=\"text source\">[source <a class=\"external\" title=\"External Link: https:\/\/www.youtube.com\/watch?v=DJbuo3tzV2c\" rel=\"noopener\" href=\"https:\/\/www.youtube.com\/watch?v=DJbuo3tzV2c\">youtube.com<\/a>, via <a class=\"external\" title=\"External Link: https:\/\/x.com\/PorkPoncho\/status\/2057553908449550448\" rel=\"noopener\" href=\"https:\/\/x.com\/PorkPoncho\/status\/2057553908449550448\">x.com<\/a>]<\/p>\n<p><!-- cache: html:pushsquare.com\/ssl\/ps5\/related-info\/fadaa31efd0b2cd585b657771f2c3e82 @ 1779504869 --><\/p>\n<aside class=\"see-also\">\n<dl>\n<dt>See Also<\/dt>\n<dd class=\"first\">\n<\/dd>\n<\/dl>\n<\/aside>\n<\/div>\n<div class=\"related-content\">\n<div class=\"author-info\">\n<section class=\"block author\">\n<div class=\"body\">\n<p class=\"avatar\"><img loading=\"lazy\" decoding=\"async\" class=\"img lazy\" src=\"https:\/\/images.pushsquare.com\/users\/4271\/photo\/0\/avatar.jpg?v=1709294233\" width=\"80\" height=\"80\" loading=\"lazy\" alt=\"Sammy Barker\"\/><\/p>\n<div class=\"text\">\n<p>As the Editor of Push Square, Sammy has over 15 years of experience analysing the world of PlayStation, from PS3 through PS5 and everything in between. He\u2019s an expert on PS Studios and industry matters, as well as sports games and simulators. He also enjoys RPGs when he has the time to dedicate to them, and is a bit of a gacha whale.<\/p>\n<\/div><\/div>\n<\/section>\n<\/div>\n<\/div>\n<\/aside>\n<\/div>\n<p><script async src=\"\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><br \/>\n<br \/><br \/>\n<br \/><a href=\"https:\/\/www.pushsquare.com\/news\/2026\/05\/its-nuts-major-ps5-security-vulnerability-exposed-and-were-all-at-risk\">Source link <\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Image: Push Square A major PSN security vulnerability has been exposed, and any one of us could become a victim<\/p>","protected":false},"author":1,"featured_media":87861,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"footnotes":""},"categories":[40],"tags":[],"class_list":["post-87860","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-aktualitet"],"aioseo_notices":[],"magazineBlocksPostFeaturedMedia":{"thumbnail":"https:\/\/bisedoshqip.de\/wp-content\/uploads\/2026\/05\/1779506167_large-150x150.jpg","medium":"https:\/\/bisedoshqip.de\/wp-content\/uploads\/2026\/05\/1779506167_large-300x169.jpg","medium_large":"https:\/\/bisedoshqip.de\/wp-content\/uploads\/2026\/05\/1779506167_large-768x432.jpg","large":"https:\/\/bisedoshqip.de\/wp-content\/uploads\/2026\/05\/1779506167_large-1024x576.jpg","1536x1536":"https:\/\/bisedoshqip.de\/wp-content\/uploads\/2026\/05\/1779506167_large.jpg","2048x2048":"https:\/\/bisedoshqip.de\/wp-content\/uploads\/2026\/05\/1779506167_large.jpg","trp-custom-language-flag":"https:\/\/bisedoshqip.de\/wp-content\/uploads\/2026\/05\/1779506167_large-18x10.jpg","colormag-highlighted-post":"https:\/\/bisedoshqip.de\/wp-content\/uploads\/2026\/05\/1779506167_large-392x272.jpg","colormag-featured-post-medium":"https:\/\/bisedoshqip.de\/wp-content\/uploads\/2026\/05\/1779506167_large-390x205.jpg","colormag-featured-post-small":"https:\/\/bisedoshqip.de\/wp-content\/uploads\/2026\/05\/1779506167_large-130x90.jpg","colormag-featured-image":"https:\/\/bisedoshqip.de\/wp-content\/uploads\/2026\/05\/1779506167_large-800x445.jpg","colormag-default-news":"https:\/\/bisedoshqip.de\/wp-content\/uploads\/2026\/05\/1779506167_large-150x150.jpg","colormag-featured-image-large":"https:\/\/bisedoshqip.de\/wp-content\/uploads\/2026\/05\/1779506167_large-1280x600.jpg","colormag-elementor-block-extra-large-thumbnail":"https:\/\/bisedoshqip.de\/wp-content\/uploads\/2026\/05\/1779506167_large-1155x480.jpg","colormag-elementor-grid-large-thumbnail":"https:\/\/bisedoshqip.de\/wp-content\/uploads\/2026\/05\/1779506167_large-600x417.jpg","colormag-elementor-grid-small-thumbnail":"https:\/\/bisedoshqip.de\/wp-content\/uploads\/2026\/05\/1779506167_large-285x450.jpg","colormag-elementor-grid-medium-large-thumbnail":"https:\/\/bisedoshqip.de\/wp-content\/uploads\/2026\/05\/1779506167_large-575x198.jpg"},"magazineBlocksPostAuthor":{"name":"Ioni","avatar":"https:\/\/secure.gravatar.com\/avatar\/4de7d1024908d847fc21ef50fe01465508cd6bac2b59b1c21485c2342bf8bf44?s=96&d=mm&r=g"},"magazineBlocksPostCommentsNumber":"0","magazineBlocksPostExcerpt":"Image: Push Square A major PSN security vulnerability has been exposed, and any one of us could become a victim","magazineBlocksPostCategories":["Aktualitet"],"magazineBlocksPostViewCount":6,"magazineBlocksPostReadTime":5,"magazine_blocks_featured_image_url":{"full":["https:\/\/bisedoshqip.de\/wp-content\/uploads\/2026\/05\/1779506167_large.jpg",1280,720,false],"medium":["https:\/\/bisedoshqip.de\/wp-content\/uploads\/2026\/05\/1779506167_large-300x169.jpg",300,169,true],"thumbnail":["https:\/\/bisedoshqip.de\/wp-content\/uploads\/2026\/05\/1779506167_large-150x150.jpg",150,150,true]},"magazine_blocks_author":{"display_name":"Ioni","author_link":"https:\/\/bisedoshqip.de\/sq\/author\/drilon_admin\/"},"magazine_blocks_comment":0,"magazine_blocks_author_image":"https:\/\/secure.gravatar.com\/avatar\/4de7d1024908d847fc21ef50fe01465508cd6bac2b59b1c21485c2342bf8bf44?s=96&d=mm&r=g","magazine_blocks_category":"<a href=\"#\" class=\"category-link category-link-40\">Aktualitet<\/a>","_links":{"self":[{"href":"https:\/\/bisedoshqip.de\/sq\/wp-json\/wp\/v2\/posts\/87860","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/bisedoshqip.de\/sq\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/bisedoshqip.de\/sq\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/bisedoshqip.de\/sq\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/bisedoshqip.de\/sq\/wp-json\/wp\/v2\/comments?post=87860"}],"version-history":[{"count":0,"href":"https:\/\/bisedoshqip.de\/sq\/wp-json\/wp\/v2\/posts\/87860\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/bisedoshqip.de\/sq\/wp-json\/wp\/v2\/media\/87861"}],"wp:attachment":[{"href":"https:\/\/bisedoshqip.de\/sq\/wp-json\/wp\/v2\/media?parent=87860"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/bisedoshqip.de\/sq\/wp-json\/wp\/v2\/categories?post=87860"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/bisedoshqip.de\/sq\/wp-json\/wp\/v2\/tags?post=87860"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}