Sony: PlayStation Network Users' Credit Card Info May Have Been Leaked

Sony’s early bid for a high seed in next year’s Worst Company tournament continues, as does the mass outage of its PlayStation Network. Yesterday, the company admitted that it wasn’t sure if users’ credit card info was compromised by whatever evil forces hacked the system, but now Sony has slightly upgraded that uncertainty by saying that credit card info may have been leaked.

In an update posted on the PlayStation blog, Sony writes:

Although we are still investigating the details of this incident, we believe that an unauthorized person has obtained the following information that you provided: name, address (city, state, zip), country, email address, birthdate, PlayStation Network/Qriocity password and login, and handle/PSN online ID. It is also possible that your profile data, including purchase history and billing address (city, state, zip), and your PlayStation Network/Qriocity password security answers may have been obtained. If you have authorized a sub-account for your dependent, the same data with respect to your dependent may have been obtained. While there is no evidence at this time that credit card data was taken, we cannot rule out the possibility. If you have provided your credit card data through PlayStation Network or Qriocity, out of an abundance of caution we are advising you that your credit card number (excluding security code) and expiration date may have been obtained.

Sony goes on to remind U.S. customers that they have free once-a-year access to their credit reports at annualcreditreport.com or by calling (877) 322-8228. It also gives the number for the individual credit bureaus for customers to put fraud alerts on their reports if they so wish.

Meanwhile, Sony says it now “has a clear path” for getting the PSN back to the world of the living and “expect[s] to restore some services within a week.”

Update on PlayStation Network and Qriocity [PlayStation blog]