SOE Security Update

Dear Valued Sony Online Entertainment Customer:
Our ongoing investigation of illegal intrusions into Sony Online Entertainment systems has discovered that hackers may have obtained personal customer information from SOE systems. We are today advising you that the personal information you provided us in connection with your SOE account may have been stolen in a cyber-attack. Stolen information includes, to the extent you provided it to us, the following: name, address (city, state, zip, country), email address, gender, birthdate, phone number, login name and hashed password.

Customers outside the United States should be advised that we further discovered evidence that information from an outdated database from 2007 containing approximately 12,700 non-US customer credit or debit card numbers and expiration dates (but not credit card security codes) and about 10,700 direct debit records listing bank account numbers of certain customers in Germany, Austria, Netherlands and Spain may have also been obtained - we will be notifying each of those customers promptly.

There is no evidence that our main credit card database was compromised. It is in a completely separate and secured environment.

We had previously believed that SOE customer data had not been obtained in the cyber-attacks on the company, but on May 1st we concluded that SOE account information may have been stolen and we are notifying you as soon as possible.

We apologize for the inconvenience caused by the attack and as a result, we have:

1) Temporarily turned off all SOE game services;

2) Engaged an outside, recognized security firm to conduct a full and complete investigation into what happened; and

3) Quickly taken steps to enhance security and strengthen our network infrastructure to provide you with greater protection of your personal information.

The story is too old to be commented.
Shanks2817d ago (Edited 2817d ago )

Jesus christ another attack?
They are not just hackers now, this is cyber terrorism.
If they ever catch them, I hope their trial we conduct in Finland,
the punish there for this kind of stuff is death by hanging.

jonboi242817d ago (Edited 2817d ago )

its not a separate attack, gamespot and kotaku both claim that it most likely related with the attack last month

Llednar2817d ago

Death penalty for hacking? Finland has it backwards.

RememberThe3572817d ago

I agree. Hacking sucks but it doesn't warrant the death penalty. That should be reserved for mass murderers and rapists.

b_one2817d ago

it could help actually ;)

shoddy2817d ago

I think you go to jail for spitting.

LOGICWINS2817d ago (Edited 2817d ago )



Is Kotaku full of shit now? Man, the denial on this site is outstanding! Good thing I didn't have my CC info on PSN.

BK-2012817d ago

"Discovered evidence that information from an outdated database from 2007 containing approximately 12,700 non-US customer credit or debit card numbers and expiration dates (but not credit card security codes) and about 10,700 direct debit records listing bank account numbers of certain customers in Germany, Austria, Netherlands and Spain may have also been obtained - we will be notifying each of those customers promptly.

There is no evidence that our main credit card database was compromised. It is in a completely separate and secured environment."

Kotaku IS wrong dumbass. Expired billing data from 2007 from 4 european countries does not mean millions of CC numbers were taken.

Llednar2817d ago


Lamarthedancer2817d ago (Edited 2817d ago )

You might of been right...but who cares

People just like to get it from the big guys themselfs because you can't trust everything on the internet. Does it bother you that much that people like to know what to believe before they start to judge

LOGICWINS2817d ago (Edited 2817d ago )

Wow, calling people dumbass over the Internet. So brave.

"You were right...who cares"

LOL...YOU care. If you don't care, why are you even replying to me???

Lamarthedancer2817d ago (Edited 2817d ago )

because it's a comment section on a games website...I'm commenting why you shouldn't be so big about why you were right

but it seems you totaly ignored what I actually said after that.

It's like you went "Oh can't argue with that" oh but he's said "who cares" I'll just counter him with the old "You care because you commenting" comeback.....nice one troll ¬¬

testerg352817d ago

Logicwins, don't worry about BK-201. Its all in stages.

First he was in the denial phase.
Now he's in his violent stage.

This happens with a lot of Sony/PS3 fans.

PS3 Hacked -
First it was "LOL. PS3 can't be hacked. Just a bunch of liars". Then it became "Hacker's should burn and go to hell!"

PSN Hacked -
"Haha. Anonymous what are hackers going to do.", "Its only maintenance!". "All hackers should just burn and go to hell!"

LOGICWINS2817d ago (Edited 2817d ago )

"It's like you went "Oh can't argue with that" oh but he's said "who cares" I'll just counter him with the old "You care because you commenting" comeback."


@testerg35- ROFL haha bubs.

RememberThe3572817d ago

The problem people have with Kotaku is that they report half truths. They don't wait for the facts to come out they just post what they hear. Thats why they often are wrong about what they initially report.

If Kotaku gets it right sometimes it doesn't take them off you hook for all the other times they miss lead us.

XabiDaChosenOne2817d ago

@LOGICWINS BK-201 was rightful to call you a dumbass, the only reason you even care about this situation is to take immature fanboy jabs. You got owned, deal with it.

radphil2817d ago (Edited 2817d ago )


Can I ask something? What..the..hell is wrong with you?

You're bragging at the potential possibility of ID Theft, and you're here laughing?

You REALLY need some help.

Kotaku updated their article fyi.

Scary692817d ago

Kotaku has been full of shit since the beginning of his birth and they all still full of shit.

+ Show (8) more repliesLast reply 2817d ago
Chaos692817d ago

Sony should sue more. lmao

Fox012817d ago (Edited 2817d ago )

They took away SD card slots, PS2 BC, OtherOS, PSN. Next step, send commandos to retrieve your PS3s.

Want to know what's funny? None of these prevented the hacks.

Chaos692817d ago

Didn't Anon say they would attack PSN as soon as it's up? I hope these phockers get caught.

thereapersson2817d ago

Moron, BC and SD card slots are because of cost-cutting measures to lower the price of the system. How could removing BC prevent hacking of the PSN?

The only thing pertaining to this is PSN and OtherOS.

leila012817d ago (Edited 2817d ago )

His/her point still stands; they've been degrading the PS3 and bullying people. It's time they get a taste of their own medicine.

nevimkdojsem22817d ago

They can downgrade their products as much as they want, nobody forces you to buy them just like nobody forces you to buy overpriced Microsoft accessories. You could have bought fat PS3 - they were sold for years. Who is Sony bullying, those few people who stole and published their private keys? It's cute that you want Sony punished while the only one punished are PSN users - clearly you've never owned a PS3 otherwise you wouldn't want to punish yourself.

Christopher2817d ago (Edited 2817d ago )

I gotta say, find it funny to see people slam Sony for downgrading their hardware to meet the price that people wanted while ignoring that even the downgraded results come with more capabilities than the competition and Sony doesn't use overpriced proprietary hardware.

As for opinions on bullying others or not, hard to say IMHO. Kind of see all businesses pushing back to defend their product each day. Not sure how far is too far and how far is necessary. Out of my level of understanding.

Jonah_Reese2817d ago (Edited 2817d ago )


First real good comment I've seen on this post. Granted I didn't look at all a majority of the comments But, feh. I still find it stupid when people criticize the Sony for removing a few things to bring the price down. It's just as bad as a PS3 fanboys denial... wait... yeah it is.

Bubb... oh wait, never mind.

+ Show (4) more repliesLast reply 2817d ago
Dante1122817d ago (Edited 2817d ago )

How can it be another attack when the servers aren't even up (Including Japan despite what was reported by a site earlier)? This is the attack from last month.

mastiffchild2817d ago

Sony are under the microscope right now for a number of reasons-not all of their own making. Sony failed to keep things as secure as they, and their customers would have wished but the fact they're being very forthright about telling all they can is pretty reassuring and , sadly, unusually candid for a large money hungry corporation of their size.

Where it stops being Sony's fault is the FACT that they didn't ASK for any of this and no matter how you judge their efforts(and without the root key being physically "lost" and distributed much of this would never have ever happened-a simple act of everyday theft)to keep customer's, and their own, info safe someone nefariously set about taking it illegally-THEY are the true wrongdoers here. Nobody hacked by accident.

Where the two ends meet is the lines crossed by Sony in taking on the likes of Geohot in court. He's happy to say what he got out of his little deal to save his own arse when people believed in him and were let down by someone who, for all we know, set himself up as a hacking martyr, took supporters funds for his crusade only to rat out his "mates" at the first scent of a settlement. Did Sony somehow "deserve" this because of taking legals over hackers? The light of these hacks suggests that they may have made themselves a target but rubbishes ANY inkling that the likes of Hotz leaking the info onto the public domain were naive of the end result of jailbreaks and hacks-piracy and stealing information. It was all about freedom, wasn't it Georgy boy, eh? O yeah, nobody was going to go to the obvious devious ends of taking free games or nicking innocent people's account details if possible were they? The arrogance he believed a court would swallow such BS naivety winds me up more than the way he led his "followers" up the garden path and used their money not to fight Sony as promised in his hacker's rights crusade but to save his own selfish neck.

So, sure, Sony ARE culpable in that , eventually(though through a string of events not all entirely tied to the world of IT)their security was found lacking but haven't we heard that enough and lost sight of the real criminals? How is it right to blame ONLY the victim of a burglary rather than the thief just because he failed to have the world's greatest window lock?

The fact PSN is free to use(bar those relatively few Plus users)possibly meant Sony had more freedom to be straight with everyone and take PSN offline to sort it out and I don't see the sub based(or largely sub based) SOE staying down anything like as long but we shall see. What concerns me,though, is that as I already doubt all companies would have gone public as Sony have(or that the media would react in the mental way it has over it with many other corps either)with this stuff other's will, I reckon, be even less likely to not try and hush things up in future. The over reacting media may have ensured a future where we get less honesty from hacked companies losing our info.

If the real thieves get ignored and the middlemen/victims blamed what's in it for them to come out in the open? Sony MUST do right by everyone and seem to be making the right noises but, ffs, by the same yardstick shouldn't we want some of the common criminals who DID these attacks bringing to justice? Why so little noise on that front?

mastiffchild2817d ago

BTW-sorry to go on but, seriously, I'm tired of it ONLY being Sony at fault here. They aren't the biggest culprits and we'll never know what would have happened had actual facts not been lost or stolen by/from Sony in the first instance as PS3 had stayed unhacked for a respectable time really.

I don't expect anything from ANY corporation as they want nothing but my cash but right is right and I know a witch hunt when I see one and cannot see, otherwise, why the hackers seem to be being totally ignored by the media in all this Sony stuff. WE also have no idea who, if anyone, has actually suffered a financial loss out of Sony's PSN/SOE customers yet so I also feel sites are jumping the gun for hits on the basis of VERY little information.

Add to that the way other companies have had hacks and never suffered a media backlash like this and you might begin to wonder, as I am, if everything's right here. Sure, Sony messed up but what of those doing the stealing? Again, WHY are they seemingly fine by the western media? It makes little sense to me ethically, as reportage or from a common sense POV. It makes western game blogs look VERY dodgy to this observer.

yewles12817d ago

Because this generation reeks of fear from some manipulative bunch of digital Mafia/Nazis, that they can't speak up for themselves.

+ Show (3) more repliesLast reply 2817d ago
helghast1022817d ago (Edited 2817d ago )

Now, can we stay CALM this time?

BK-2012817d ago

I know right? No current CC data was taken. Just expired CC numbers (Not the security codes) from 2007 from 4 european countries were MAYBE taken. And this has to do with what happened 2 weeks ago. But of course the media is going to spin this and make it seem that millions of dollars will be stolen from customers and that Sony is the worst company ever.

maxcer2817d ago (Edited 2817d ago )

doesn't vindicate them anyway. the network was hacked, damage in the form of compromised user info has been spread(probably sold) across the world.

in addition, each day PSN is down sony and other developers/publisher are loosing money on this blunder.

death2smoochie2817d ago (Edited 2817d ago )

Its amazing the amount of reach arounds people on this site especially are giving Sony for this entire ordeal.
Then again this also happened when MS had RROD and its legion of fans looked the other way.
What the hell is with blind followers?
Sony dropped the ball here. End of story. Stop defending them and move on.

helghast1022817d ago

I guess the disagrees mean
Use your head, and you'll make it out of this "situation" fine.
Mark my words.

fedexas2817d ago (Edited 2817d ago )

death2smoochie : Nobody is blindly defending Sony but this situation is being BLOWN COMPLETELY OUT OF PROPORTION. Yes this is a serious situation but the media is turning this into some catastrophe; like Sony can't recover from this or something.

And then you have stupid sites jumping the gun.

EDIT: Again, I don't see anyone blindly defending Sony. I see people who just want the network back up and running. LIKE I DO.

death2smoochie2817d ago

I agree that sites are jumping the gun. Its how they get "hits" however, there are MANY that are blindly defending them. All you have to do is pull up any of these stories just on this site alone.
This is EXACTLY the same type of blind defending that happened with RROD and how many blindly defended that fiasco. Its the same thing happening now.

despair2817d ago

when it starts looking up, things go south again...damn...

Donthizz2817d ago

as usual some sites jumped the gun...

Aussiegamer2817d ago (Edited 2817d ago )

Look at the two guys who have submitted these last two articles. Its hilarious. Looks at all the little xbox fanboys jumping around like its christmas. Man im having a good laugh, I guess this is what happens when you have no games to play, you try find articles that say the ps3 is doooomed again. hahahaha.

testerg352817d ago

You don't seem to be playing anything either since you commented on both articles.

Aussiegamer2817d ago

@testerg yeah thats cause im at work mate.

Tainted Gene2817d ago

A productive worker I see...

metsgaming2817d ago

watch now there will be dozens of articles about this but when they fix it there will be like 3 at most.

IPUMPMYGUN2817d ago (Edited 2817d ago )

Not that I have subscribed to any of there MMOs, shouldn't they have dealt with this at the same time and just shut both of them down?

I know for a fact that Sony Online Entertainment said they were merging DCUO servers, but are they merging the other MMOs as well? I guess that also explains the "down time".

I assume hackers were going to plan an attack in 2007, but failed seeing as how the billings were expired? Or was this a recent attack and all they found was expired billing from 2007?

Show all comments (65)
The story is too old to be commented.