Sony’s PlayStation Network headaches aren’t over yet. Now an exploit has been unearthed that allows hackers to change your PSN password using information stolen from the original April PSN attack.

Luckily, Sony has acted quickly and taken down its online PSN login and password recovery. That means users currently can’t log on to a variety of Sony sites, including PlayStation.com and its online forums.

It’s commendable that Sony has acted quickly to plug this potential exploit, but the company still hasn’t admitted that the exploit exists. Sony said in a statement that its PSN login systems are down “due to essential maintenance and at present it is unclear how long this will take.”

The hack was first reported by the blog Nyleveia and was confirmed by Eurogamer. It’s also been corroborated by multiple users on the popular gaming forum NeoGAF.

Gamers can still log in to PSN on the PlayStation 3 and PSP. If Sony had to remove PSN login capabilities from its game consoles, gamers would have likely thrown a fit. The company has only recently restored PSN access following nearly a month of no service after April’s attack.

Update: Sony has put up a blog post about the issue: “Contrary to some reports, there was no hack involved. In the process of resetting of passwords there was a URL exploit that we have subsequently fixed.”

Via The Next Web