Skip to main content

Sony's SOE Suffers Breach, 24 Million Affected

Sony has confirmed a Sony Online Entertainment hack that could affect as many as 25 million users. The attack occurred prior to the hack that saw the personal data of 77 million PSN users compromised and prompted Sony to switch off PSN pending investigation. However, though it’s said to have taken place on April 16 and 17, Sony isn’t treating this as a second attack. Given that it’s similar in nature to the PSN intrusion that occurred on April 17-19, Sony is treating the two incidents as related.

Sony says that the intrusion, discovered yesterday during investigations into the PSN breach, affects 24.6 million SOE accounts, and yes, the stolen information does include some credit and debit card details. However, Sony says the credit card database targeted was outdated and that the information stolen is from 2007. So, depending on the issuing bank, many cards in use in 2007 could be out of date by now.

The compromised credit and debit information includes 12,700 non-U.S. credit or debit card numbers and expiration dates (but not credit card security codes), and about 10,700 direct debit records of certain customers in Austria, Germany, Netherlands and Spain. Additionally, the 10,700 direct debit records from accounts in Austria, Germany, Netherlands and Spain include customers’ bank account number, name, account name, and address.

On top of that, Sony says hackers also gained access to a database containing other personal data. Sony advised SOE users in an email that their name, address, email, birth date, phone number and other information may have been stolen in the attack.

Reports of SOE being down started trickling in yesterday afternoon, and Sony intends to compensate users for the loss of service.

"SOE will grant customers 30 days of additional time on their subscriptions, in addition to compensating them one day for each day the system is down," the company said in a statement.

Similar to the PSN situation, Sony is also in the process of creating a "make good" plan for its PlayStation3 MMOs (DC Universe Online and Free Realms). More information is expected to be released this week.

  • kilo_17
    Wow, PSN and this?! These hackers must be out to get Sony.
    Reply
  • Ragnar-Kon
    Sucks to be Sony right now. Glad I work for the professional broadcast side of Sony instead of the consumer side of Sony.
    Reply
  • Something tells me this all has to do with the large amount of employees they recently fired.
    Reply
  • 11796pcs
    I read that just before the hacks took place Sony laid off 1/3 or 200 of its people for online entertainment to try to get their books into the black, supposedly those laid off people may have caused this entire thing...
    Reply
  • surfer1337dude
    Wait, so Sony's SOE was hacked before the PSN but they didnt know until now? Sony really needs to look at its' security and needs to really make some heads roll. Also these little "perk packages" for its users isnt enough. This information is very important to keep safe and trying to pay off its users to just ignore all of this and trust them again with roughly 20 bucks worth of freebies (around 10 bucks for the service extensions and prob some 10 bucks worth of dlc)...which doesnt really cost Sony anything (maybe 2 bucks if that of actual production cost). Is that really the rate for someone's personal information? Especially when they arent sure if the CC info was stolen from the PSN (all the news articles from Sony I have seen just says they arent sure and it can not be ruled out), so I should be able to wear a corporate Sony shirt and give some random people on the street a 2 dollar bill for their credit cards and usernames/passwords? I will admit that I am a Sony fan (well playstation), but this really just p***es me off. I am so glad that I havent used my CC to add funds online and just bought psn cards from gamestop/bestbuy instead. Although all of my other information was/might have been taken. I personally would like to see Sony investigated for its security, which maybe it should be required by these credit card companies to ensure the security of its users.
    Reply
  • alidan
    they are saying a month free. but really i want a month of double or tripple exp. i dont have forever to live, and these games may not last another year, so i want the most out of it as fast as i can, and the only way to do that is simulate 3 months in a 1 month period of time.
    Reply
  • slothy89
    alidanthey are saying a month free. but really i want a month of double or tripple exp. i dont have forever to live, and these games may not last another year, so i want the most out of it as fast as i can, and the only way to do that is simulate 3 months in a 1 month period of time.You're more concerned about your CoD rank than the fact your identity has been stolen and could be used illegally? Wow your priorities need a good checking..
    Reply
  • cyberthug
    alidanthey are saying a month free. but really i want a month of double or tripple exp. i dont have forever to live, and these games may not last another year, so i want the most out of it as fast as i can, and the only way to do that is simulate 3 months in a 1 month period of time.
    Some people really need to do some sports..
    Reply
  • Hellbound
    I play SWG and I'm considering canceling it because of their negligence..
    Reply
  • bvillan
    You know, this puts a lot of devs in a kind of awkward position. My God, there's a fairly important trade show in a month, and Sony's gonna have to spend half of its time kissing @$$ and touting security while trying to drum up excitement for both exclusive and non-exclusive software. That's going to be tough and I can see 3rd parties putting Sony at the bottom of the bill in smaller font; they're gonna have to display an awesome balancing act or Microsoft may have a pretty sweet forecast till EOY.
    Reply