I haven’t written a blog in a long time (short reason: my brain needed a wee bit of a break). I tend to also have developed the tendency to report on factual information: that is, I don’t like to speculate about upcoming products in the video game industry and reserve such comments for when I am tossing out ideas or trying to provide a fresh perspective.
Why did I break my silence after a month? What has me so riled up that I just had to post urgently about it?
Less than a week ago, the PlayStation Network (PSN) went offline. And it stayed there. Since April 20 there has been no way for PSN users to go online and download media, play games, or participate in social networks. (It’s not a huge deal for me, but I’m sure it is for some.) Why? Because the PSN servers were compromised by third-party hackers. Today, after almost one week of PSN downtime, the Senior Director of Corporate Communications for Sony releases this statement:
Although we are still investigating the details of this incident, we believe that an unauthorized person has obtained the following information that you provided: name, address (city, state, zip), country, email address, birthdate, PlayStation Network/Qriocity password and login, and handle/PSN online ID. It is also possible that your profile data, including purchase history and billing address (city, state, zip), and your PlayStation Network/Qriocity password security answers may have been obtained. If you have authorized a sub-account for your dependent, the same data with respect to your dependent may have been obtained. While there is no evidence at this time that credit card data was taken, we cannot rule out the possibility. If you have provided your credit card data through PlayStation Network or Qriocity, out of an abundance of caution we are advising you that your credit card number (excluding security code) and expiration date may have been obtained.
For your security, we encourage you to be especially aware of email, telephone, and postal mail scams that ask for personal or sensitive information. Sony will not contact you in any way, including by email, asking for your credit card number, social security number or other personally identifiable information. If you are asked for this information, you can be confident Sony is not the entity asking. When the PlayStation Network and Qriocity services are fully restored, we strongly recommend that you log on and change your password. Additionally, if you use your PlayStation Network or Qriocity user name or password for other unrelated services or accounts, we strongly recommend that you change them, as well.
I have two words Sony, and though they’re the title of this blog post, I think that they warrant repeating.
Sony: you have 70 MILLION REGISTERED USERS on the PlayStation Network. 70 million!! And you’re telling all of us that our personal information, including credit cards, hasvebeen compromised due to a lack of sufficient security in your servers? And it took you six days to tell us this? Your PR is going to need serious help, Sony, especially on the heels of a recent law suit involving another PS3 hacker and this month’s shut-down of three development studios.