Colin Moriarty Exposes PSN 2FA Flaw After 1 Account Hack

2 articles · Updated · Beebom · May 19

Moriarty said his PSN account was taken despite an alphanumeric password and two-factor authentication, with hackers changing the account email and disabling 2FA.
1 support-side weakness appears central: hackers allegedly need only a PSN ID plus one transaction detail—such as a full order number or last 4 card digits—to convince PlayStation support they own the account.
3 weeks was the recovery timeline support initially gave Moriarty, though Sony contacts restored his account much faster; he said most users would not have that advantage.
Numerous PSN users reported similar recent takeovers after his post, reinforcing claims of a broader social-engineering pattern rather than an isolated breach.
The episode adds pressure on Sony to tighten account-recovery checks as players already face backlash over recent PlayStation and PS Plus price increases.

With AI supercharging scams, is the gaming industry's reliance on human customer service a ticking time bomb for millions of players?

Your digital game library is worth thousands. Is it truly safe when a simple chatbot conversation can erase it all?