PlayStation Network hacked, data on millions at risk

Share this article:

Sony may have sustained the largest cyber intrusion since the Heartland Payment Systems breach, disclosing Tuesday that its PlayStation Network (PSN) was hacked to steal sensitive information belonging to users.

Attackers stole personal data belonging to PSN and Qriocity's users between April 17 and 19, Patrick Seybold, a PlayStation spokesman, said in a blog post Tuesday. Qriocity is Sony's music, games, book and video on-demand service.

Roughly 77 million users are registered with PSN and Qriocity.

Compromised assets include names, physical addresses, email addresses, birth dates and PSN/Qriocity credentials, Seybold said. The hackers also may have obtained purchase histories, billing addresses and password challenge answers.

"While there is no evidence that credit card data was taken at this time, we cannot rule out the possibility," he wrote. "If you have provided your credit card data through PlayStation Network or Qriocity, to be on the safe side, we are advising you that your credit card number (excluding security code) and expiration data may also have been obtained."

Seybold alluded to the possibility that the hackers may use the data they obtained to conduct phishing scams that attempt to dupe victims into giving up more sensitive information, such as credit card, Social Security or tax identification numbers.

"If you are asked for this information, you can be confident Sony is not the entity asking," Seybold wrote.

Tuesday's revelation sheds light on why PSN and Qriocity services have been offline for roughly a week.

"Our efforts to resolve this matter involve rebuilding our system to further strengthen our network infrastructure," Seybold wrote in a separate blog post on Saturday. "Though this task is time-consuming, we decided it was worth the time necessary to provide the system with additional security."

He did not say how the hackers got in.

Share this article:

Sign up to our newsletters

More in News

In Cisco probe, misuse or compromise spotted on all firms' networks

In Cisco probe, misuse or compromise spotted on ...

Cisco analyzed the business networks of 30 multinational companies last year, and revealed the findings in its 2014 Annual Security Report.

Fareit trojan observed spreading Necurs, Zbot and CryptoLocker

The Necurs and Zbot trojans, as well as CryptoLocker ransomware, has been observed by researchers as being spread through another trojan, known as Fareit.

Post Heartbleed, tech giants join initiative to bolster open source

Post Heartbleed, tech giants join initiative to bolster ...

The newly formed Core Infrastructure Initiative, created to boost under-funded open source projects, will tackle OpenSSL first.