New allegations regarding PlayStation Network (PSN) account security have caused significant uproar in the gaming world. According to shared cases, accounts can be compromised even when two-factor authentication (2FA) and passkeys, considered the strongest security measures by users, are active.

PlayStation Network Attack Panic

Nicolas Lellouche, a journalist for the French technology publication Numerama, announced that his own account was stolen by cyber attackers despite being protected by these methods. According to Lellouche, the attackers not only gained access to the account but also changed the registered email address and password, effectively removing the user from the system.

The most striking aspect of this cyberattack is that the account was compromised a second time using the same method shortly after being recovered. It is reported that the attacker claims to have a critical vulnerability in Sony’s internal security systems, allowing them to directly perform actions through Sony’s own tools using only the email address associated with the account.

This claim strengthens the suspicion that the security vulnerabilities may stem from a systemic weakness in Sony’s infrastructure rather than user error. While there has been no official confirmation from Sony yet, security experts have raised the alert level after similar complaints began to emerge from users in different regions.

It is alleged that attackers used screenshots of email addresses and other content previously shared by account holders on social media or forums to create a data repository. Using this data, attackers manipulated Sony’s support systems and made unauthorized purchases from credit cards linked to the account.

Security experts recommend that users take some basic precautions until technical analyses are complete and Sony releases an official patch. This includes removing credit cards and other payment methods registered on PSN accounts and opting for prepaid cards used only when needed.