Sega Customer Database Hacked

[nsane.forums]

Video game company Sega had a and sensitive information on about 1.3 million customers has been compromised, according to media reports.

The database of the Sega Pass website includes customer names, dates of birth, e-mail addresses, and encrypted passwords.

Various media outlets have been able to confirm the attack with officials from the Japanese company. The news site Playstation Lifestyle posted the text of an e-mail that Sega reportedly sent to Sega Pass registered users on Friday night informing them of the breach.

In the letter, Sega stresses that passwords weren't stored in plain text, but rather encrypted, and that payment information wasn't involved in the incident.

Still, the company recommends that people who use the same e-mail/password combination to access other websites that they used for Sega Pass proactively change those passwords. (See also Lulzsec E-Mail Hack Proves We're Lousy at Picking Passwords.")

Customers should also be on the lookout for suspicious communications asking for personal information, as they may be attempts to involve them in fraudulent transactions using the compromised information, the company said in the letter.

The company already disabled the Sega Pass website temporarily while it investigates the incident and has reset all passwords.

The breach is the latest large-scale hacking incident to happen in recent months. Sony has had several systems compromised, most infamously its Playstation Network and Qriocity service, exposing personal and credit card information on millions of customers. Citibank also fell victim to a hack attack that compromised credit card data, as well as U.S. government agencies

The LulzSec hacker group has reportedly offered to help Sega in its investigation.

View: Original Article

[nsane.forums]

Sega admits nearly 1.3 million accounts obtained in cyber attack

VG247.com reports that the Sega press release stated that 1,290,755 accounts were taken as a result of the cyber attack, including "members name, email addresses, dates of birth and encrypted passwords". As we reported on Friday Sega said that no financial info was obtained due to that info being stored on another site.

Following an email to Sega's customers on Friday alerting them to a cyber attack on the Sega Pass web site, the game publisher has now admitted in a rare weekend press release that nearly 1.3 million users accounts have been obtained as a result of the cyber attack.

According to Sega's press release, "After the unauthorized entry was identified, we immediately stopped the SEGA Pass service and took emergency action to prevent further damage. This action included immediately contacting all our registered SEGA Pass users. We are now fully investigating the cause of the incident." It added that it plans to "strengthen network security as a priority issue" because of this cyber attack. Sega also offered its "sincerest apologies to our customers for the inconvenience and concern caused by this matter."

This is of course just the latest cyber attack on various game developers and publishers over the last two months which have included attacks on Sony Playstation, Square Enix, Codemasters, Epic Games and more. While no hacker group has claimed responsiblity for this attack on Sega, the LutzSec hacker group has said it wants to help Sega find out who is responsible due to the group's love of Sega's discontinued Dreamcast game console.

View: Original Article