26 Million SOE Accounts Info Compromised


Direct from Sony’s Mouth was this disturbing announcement made public on SOE’s website; an extension of the same attack on PSN, this time including some old credit card information dating back to 2007. You can read the press release in full below. Sony hasn’t said that the information was absolutely stolen, but did mention it may have been.



SONY ONLINE ENTERTAINMENT ANNOUNCES
THEFT OF DATA FROM ITS SYSTEMS

Breach Believed to Stem From Initial Criminal Hack of SOE

Tokyo, May 3, 2011 – Sony Corporation and Sony Computer Entertainment announced today that their ongoing investigation of illegal intrusions into Sony Online Entertainment LLC (SOE, the company) systems revealed yesterday morning (May 2, Tokyo time) that hackers may have stolen SOE customer information on April 16th and 17th, 2011 (PDT). SOE is based in San Diego, California, U.S.A.

This information, which was discovered by engineers and security consultants reviewing SOE systems, showed that personal information from approximately 24.6 million SOE accounts may have been stolen, as well as certain information from an outdated database from 2007. The information from the outdated database that may have been stolen includes approximately 12,700 non-U.S. credit or debit card numbers and expiration dates (but not credit card security codes), and about 10,700 direct debit records of certain customers in Austria, Germany, Netherlands and Spain.

With the current outage of the PlayStation® Network and Qriocity™ services and the ongoing investigation into the recent attacks, SOE had also undertaken an intensive investigation into its system. Upon discovery of this additional information, the company promptly shut down all servers related to SOE services while continuing to review and upgrade all of its online security systems in the face of these unprecedented cyber-attacks.

On May 1, Sony apologized to its customers for the inconvenience caused by its network services outages. The company is working with the FBI and continuing its own full investigation while working to restore all services.

Sony is making this disclosure as quickly as possible after the discovery of the theft, and the company has posted information on its website and will send e-mails to all consumers whose data may have been stolen.

The personal information of the approximately 24.6 million SOE accounts that was illegally obtained, to the extent it had been provided to SOE, is as follows:

* name
* address
* e-mail address
* birthdate
* gender
* phone number
* login name
* hashed password.

In addition to the information above, the 10,700 direct debit records from accounts in Austria, Germany, Netherlands and Spain, include:

* bank account number
* customer name
* account name
* customer address.

SOE will grant customers 30 days of additional time on their subscriptions, in addition to compensating them one day for each day the system is down. It is also in the process of outlining a “make good” plan for its PlayStation®3 MMOs (DC Universe Online and Free Realms). More information will be released this week.

Additionally, the company is committed to helping its customers protect their personal data and will provide a complimentary offering to assist users in enrolling in identity theft protection services and/or similar programs. The implementation will be at a local level and further details will be made available shortly in each region.

Sony Online Entertainment LLC (SOE) has been a recognized worldwide leader in massively multiplayer online games since 1999. Best known for its blockbuster hits and franchises, including EverQuest®, EverQuest® II, Champions of Norrath®, PlanetSide®, Free Realms®, Clone Wars Adventures™, and DC Universe Online™, SOE creates, develops and provides compelling online entertainment for virtually all platforms, including the PlayStation®3 Computer Entertainment System, Personal Computer, mobile and social networks. SOE is building on its proven legacy and pioneering the future of the interactive entertainment space through creative development and inspired gameplay design for audiences of all ages. To learn more, visit www.soe.com.

For more information and update about the SOE services, please visit www.soe.com/securityupdate.

Source: SOE


Written by: Jason - News Contributor


  1. #1 by Jay on May 2nd, 2011 [ 83111 Points ]

    so this is basically an extension of the same attack. At least they found this stuff out now rather than later.

  2. #2 by cz on May 2nd, 2011

    gets worse ever day…

  3. #3 by Jason on May 2nd, 2011 [ 28406 Points ]

    Jay: so this is basically an extension of the same attack. At least they found this stuff out now rather than later.  

    Yeah it seems they decided to poke soe for laughs. I really can not wait to see what happens to these people.

  4. #4 by ZFM12 on May 2nd, 2011 [ 1495 Points ]

    Guess you didn’t get my PM Jay

  5. #5 by Eddie on May 3rd, 2011 [ 44542 Points ]

    yup this is the same attack. sony confirmed it. http://i.imgur.com/IsBmJ.jpg

  6. #6 by Pedro on May 3rd, 2011 [ 39949 Points ]

    And here we go again… I really hope people read the comments before trolling all over the place.

  7. #7 by paul on May 3rd, 2011

    So u still havent told us when PSN will be back online. please give us a date or approximate date

  8. #8 by dave on May 3rd, 2011

    you have got to be dumb to do a new hack on Sony after the last hack 2 weeks ago, why so close? thats going to be why they will get caught doing this so close, thats like going to a store robbing it wait untill cops come their and go next door and rob it, point is thats too risky to do.

  9. #9 by dave on May 3rd, 2011

    I thank Sony said the 4th it will be half why up, but with this now I dont know if this will cause them to close down all internet base programs with Sony for 2 or 3 more weeks, but it should be up Weds.

  10. #10 by Tim on May 3rd, 2011

    First you say Tuesday now I’m hearin Friday can we get an actual date here

  11. #11 by dave on May 3rd, 2011

    well to be honest they said this week, they didnt give a day for as I know.

  12. #12 by Jay on May 3rd, 2011 [ 83111 Points ]

    They never said anything beyond “This Week”, with today being rumored.

    Also, dave, this is the from the same attack. It’s not a new one, it was just discovered that the information may have been compromised while they were doing the investigation with the third party security firm.

  13. #13 by dave on May 3rd, 2011

    #Jay,

    Thanks I just found out about it after I post my comment, but thanks.

    but wow I wonder if they will ever get them, I mean this seems like it tooks months maybe years to come up with, I really dont have any hope that they will get caught, this may have been to organized to do anything, and I wouldnt doubt it if this hack was done over seas, I just hope they do cause if they dont the 360 maybe next then steam then ebay etc… I wonder if the amazion.com hack was done by these same hackers I thank month or two before the PSN hack, I wonder if its the same group.


You must be logged in to post a comment.

Like trophies? Like giveaways? Want to speak your mind? Register here!