| Galaki said: That's a lot of people not getting it. I think the article is saying that, your cc# is being sent unencrypted. And the CFW was a tool used to see what info is being sent. What it means is that, people can sniff that plain text regardless of you using cfw or not. cfw, in this case, was a simple tool used to see what's going on behind that should be encrypted. Article is kind of confusing, too. They need better writers. |
No read it carefully and if you know the basics about computer security you would understand that the packets ARE being encrtpyed via SSL over http (aka https). This is the same level of security that 360, Wii, Online Banking and most online retailers use.
As for the custom firmware part - that refers to custom firmware being created with the aim of stealing your credit card information by having you install there custom firmware and then connect to a server run by the custom firmware author, the author will likely also have the custom firmware trust a custom certficate create by the hacker - thus allowing the hacker to recieve your credit card information (provivded you re-enter it into the PS3, probably on a custom page created specifically for this purpose).
As for why the article is poorly written -- i would say that the person who wrote the article is either a teenager upset that he cannot pirate games mommy and daddy won't buy for him anymore or someone with english as a second language. Both possbilites though seem to imply the person has minimal knowledge of how IT security works or is trolling.
