26 July 2016
Find out more

Massive Sony data breach leaves card details at risk

27 April 2011  |  10173 views  |  0 biometrics - eye

More than 70 million Sony PlayStation Network customers are being warned to watch out for scams after the Japanese electronics giant admitted its systems have been hacked and personal information - possibly including credit card data - stolen.

After closing down its online gaming network last week, Sony has now begun e-mailing millions of users warning that "certain PlayStation Network and Qriocity service user account information was compromised in connection with an illegal and unauthorized intrusion into our network."

The breach has left names, addresses, e-mail addresses and dates of birth compromised. Profile data, including purchase history and billing address, and PlayStation Network/Qriocity password security answers may also have been obtained.

Says the letter: "While there is no evidence that credit card data was taken at this time, we cannot rule out the possibility. If you have provided your credit card data through PlayStation Network or Qriocity, to be on the safe side we are advising you that your credit card number (excluding security code) and expiration date may also have been obtained."

The firm is warning users to watch out for e-mail, telephone, and postal mail scams and to change passwords when the service is back up and running.

In a blog explaining the delay in informing users about the hack, Sony says it found out about the intrusion on the 19 April and shut down the service but only realised the scope of the breach yesterday after bringing in outside experts and conducting forensic analysis.

However, users have reacted angrily to both the breach and Sony's handling of it, with many venting their fury through comments on the update blogs.

Says one, called carlosdfn: "This fiasco has completely changed my view of Sony. This is unacceptable and amateurish. It's like a bad joke. I hope that the people in charge of PSN's security are held responsible. Epic fail doesn't even begin to describe it, we're talking millions of people here who had their data compromised. The damage is done and people wont forget this."

Financial Fraud Action UK has moved to reassure worried Brits, issuing a statement insisting: "The banking industry has robust processes in place to protect its customers' accounts by monitoring for suspicious or irregular card transactions. If Sony confirms that card details have been compromised, and provides details to us of those accounts, card issuers can place alerts on these accounts. Further steps, such as blocking the account and/or issuing new cards can be taken if necessary. There is no need for customers to contact their bank or card company at this stage."

Update:

In its latest blog, Sony says: "The entire credit card table was encrypted and we have no evidence that credit card data was taken."

Comments: (0)

Comment on this story (membership required)

Finextra news in your inbox

For Finextra's free daily newsletter, breaking news flashes and weekly jobs board: sign up now

Related stories

Hacker pleads guilty over $36m card fraud

Hacker pleads guilty over $36m card fraud

26 April 2011  |  8792 views  |  0 comments
Hacker steals Hyundai Capital customer data for blackmail scam

Hacker steals Hyundai Capital customer data for blackmail scam

11 April 2011  |  8481 views  |  0 comments
Financial services firms caught up in massive Epsilon breach

Financial services firms caught up in massive Epsilon breach

04 April 2011  |  12547 views  |  2 comments
RSA hack explained: phishing and Flash flaw

RSA hack explained: phishing and Flash flaw

04 April 2011  |  12010 views  |  1 comments
Morgan Stanley hit hard by China-based hackers - Bloomberg

Morgan Stanley hit hard by China-based hackers - Bloomberg

01 March 2011  |  8927 views  |  0 comments
Cosmetics firm Lush forced to shut more hacked Web sites

Cosmetics firm Lush forced to shut more hacked Web sites

15 February 2011  |  8195 views  |  0 comments
Hackers penetrate Nasdaq OMX systems

Hackers penetrate Nasdaq OMX systems

07 February 2011  |  10193 views  |  0 comments
Hacker pleads guilty to theft of virtual poker chips

Hacker pleads guilty to theft of virtual poker chips

03 February 2011  |  9862 views  |  0 comments
Fall in number of data breaches - Verizon

Fall in number of data breaches - Verizon

28 July 2010  |  6046 views  |  0 comments
Visit www.abe-eba.euVisit capgemini.comFind out more

Who is commenting?

Top topics

Most viewed Most shared
MasterCard agrees £700m VocaLink acquisitionMasterCard agrees £700m VocaLink acqu...
9024 views 14 comments | 32 tweets | 37 linkedin
satelliteContactless Bitcoin startup Plutus Tap &am...
8986 views comments | 9 tweets | 3 linkedin
hands typing furiouslyBanking on IoT: Security in the Internet o...
8645 views 3 | 21 tweets | 7 linkedin
Santander doubles down on fintech fundSantander doubles down on fintech fund
7995 views comments | 23 tweets | 28 linkedin
Apps crush internet for UK banking loginsApps crush internet for UK banking logins
7341 views comments | 17 tweets | 25 linkedin

Featured job


Brussels (Belgium) or Paris (France)

Find your next job