Playstation Details Compromise Update: Twitter

BJP409

Super-Cala-Fricken-Awesome
Mar 10, 2008
5,055
7
38
Brisvegas, Australia
#1
This just in from Twitter:

http://blog.eu.playstation.com/2011/05/03/sony-online-entertainment-issues-security-press-release/

Posted on 3 May by Nick Caplin – Head of Communications, SCEE
Sony Online Entertainment Issues Security Press Release
Countries: AE, AU, GB, IE, NZ
Some of you may have heard today about an announcement from Sony Online Entertainment confirming that they were also victims of a malicious hack. As this could affect those of you with SOE accounts, they have asked us to post their press release on the blog, which should answer some of your questions.
Sony Online Entertainment Announces Theft of Data from Its Systems
Breach believed to stem from initial criminal hack of SOE.
Tokyo, May 3, 2011
- Sony Corporation and Sony Computer Entertainment announced today that their ongoing investigation of illegal intrusions into Sony Online Entertainment LLC (SOE, the company) systems revealed yesterday morning (May 2, Tokyo time) that hackers may have stolen SOE customer information on April 16th and 17th, 2011 (PDT). SOE is based in San Diego, California, U.S.A.
This information, which was discovered by engineers and security consultants reviewing SOE systems, showed that personal information from approximately 24.6 million SOE accounts may have been stolen, as well as certain information from an outdated database from 2007. The information from the outdated database that may have been stolen includes approximately 12,700 non-U.S. credit or debit card numbers and expiration dates (but not credit card security codes), and about 10,700 direct debit records of certain customers in Austria, Germany, Netherlands and Spain.
With the current outage of the PlayStation® Network and Qriocity™ services and the ongoing investigation into the recent attacks, SOE had also undertaken an intensive investigation into its system. Upon discovery of this additional information, the company promptly shut down all servers related to SOE services while continuing to review and upgrade all of its online security systems in the face of these unprecedented cyber-attacks.
On May 1, Sony apologized to its customers for the inconvenience caused by its network services outages. The company is working with the FBI and continuing its own full investigation while working to restore all services.
Sony is making this disclosure as quickly as possible after the discovery of the theft, and the company has posted information on its website and will send e-mails to all consumers whose data may have been stolen.
The personal information of the approximately 24.6 million SOE accounts that was illegally obtained, to the extent it had been provided to SOE, is as follows:
name
address
e-mail address
birthdate
gender
phone number
login name
hashed password.
In addition to the information above, the 10,700 direct debit records from accounts in Austria, Germany, Netherlands and Spain, include:
bank account number
customer name
account name
customer address.
SOE will grant customers 30 days of additional time on their subscriptions, in addition to compensating them one day for each day the system is down. It is also in the process of outlining a “make good” plan for its PlayStation®3 MMOs (DC Universe Online and Free Realms). More information will be released this week.
Additionally, the company is committed to helping its customers protect their personal data and will provide a complimentary offering to assist users in enrolling in identity theft protection services and/or similar programs. The implementation will be at a local level and further details will be made available shortly in each region.
Sony Online Entertainment LLC (SOE) has been a recognized worldwide leader in massively multiplayer online games since 1999. Best known for its blockbuster hits and franchises, including EverQuest®, EverQuest® II, Champions of Norrath®, PlanetSide®, Free Realms®, Clone Wars Adventures™, and DC Universe Online™, SOE creates, develops and provides compelling online entertainment for virtually all platforms, including the PlayStation®3 Computer Entertainment System, Personal Computer, mobile and social networks. SOE is building on its proven legacy and pioneering the future of the interactive entertainment space through creative development and inspired gameplay design for audiences of all ages. To learn more, visit www.soe.com.
For more information and update about the SOE services, please visit www.soe.com/securityupdate.
Naturally apologise if already posted!
 
Jan 5, 2008
4,569
34
48
Scotland
www.youtube.com
#2
Sony is making this disclosure as quickly as possible after the discovery of the theft, and the company has posted information on its website and will send e-mails to all consumers whose data may have been stolen
does that mean if your data has been stolen you will get sent an additional email?
or is it referring to the email we already received?
 

Agriel

Forum Sage
Mar 7, 2007
9,399
51
0
42
#3
[QUOTE="scottscorpion, post: 5525610]does that mean if your data has been stolen you will get sent an additional email?
or is it referring to the email we already received?[/QUOTE]

It will send emails out to those with SOE accounts. Its not the same as PSN. But yeah if you have both accounts you should get a 2nd email
 

Smiler

Superior Member
Sep 10, 2007
823
7
0
location, location
#5
[QUOTE="Agriel, post: 5525614]It will send emails out to those with SOE accounts. Its not the same as PSN. But yeah if you have both accounts you should get a 2nd email[/QUOTE]

Exactly SOE and PSN are two completely separate entities neither of which is linked to the other. Looks like whoever did it decided to attack everything at Sony and not just the Playstation. They stated that there was no evidence at all to show that the credit card info on your PSN account had been looked at as the files hadn't been touched.
 

BJP409

Super-Cala-Fricken-Awesome
Mar 10, 2008
5,055
7
38
Brisvegas, Australia
#6
I certainly didn't take any chances and cancelled my credit card last week. IMO, at the end of the day the passage of information is coming as fast as they discover the breaches, unfortunately certain elements of the media (for no other reason than hits and hype) have tainted that passage of information by reporting that 'another hack' has occurred (for example) when in fact it was part of the same hack but a new breach identified. I'm looking at you for starters BBC!

This whole thing really does expose some of the complacency with regard to big reputable companies who collect private data and think that the mere mention of their lawyers will deter someone from taking them on!

Ultimately though I would suggest that there is some good to come out of this globally in the sense that perhaps there will be more scrutiny of all business/agencies that collect private data!

Everything aside, I just want to get back to gaming with my mates. :)