Published on 03/05/11 16:23
Sony has admitted that further customer data has been exposed, with more than 24 milltion SOE accounts compromised, along with tens of thousands of personal bank account and credit card numbers.
Today, Sony clarified that this was not a separate attack, but was related to the original PSN attack. The Wall Street Journal has quoted a Sony representative as saying. "We temporarily took down [Sony Online Entertainment's] services as part of our continued investigation into the external intrusion that occurred in April. This is not a second attack."
Apparently, Sony only recently realised that April's security breach also had an impact upon the SOE service.
Reports suggest that the customer data, which affects customers outside of the United States, is from an old file which was last updated in 2007. Although this may mean that most of the credit card numbers may no longer be valid, the same cannot be said for personal bank account numbers for direct debit payments, or indeed customer names, dates of birth and addresses.
This also raises a question as to why Sony would need to retain old data.
It would seem that Sony are having a real tough time right now. The discovery that the breach affected SOE as well as PSN can only make matters worse for them. ©