Sega is the latest video game company to be a target of cyber criminals, who have hacked its Sega Pass Online Network. “Over the last 24 hours we have identified that unauthorized entry was gained to our SEGA Pass database…We immediately took the appropriate action to protect our consumers’ data and isolate the location of the breach. We have launched an investigation into the extent of the breach of our public systems,” wrote Sega in an email to its customers published on PlayStation Lifestyle.
Sega stated that some personal information about an unspecified number of Sega Pass users had been compromised, according to Reuters. The information includes email addresses and birthdates which can be read in plain text, and passwords which could not be read in plain text because they were encrypted before being stored on the Sega database.
“We have identified that a subset of Sega Pass members’ e-mails addresses, dates of birth, and encrypted passwords were obtained,” said the Sega letter. “To stress, none of the passwords obtained were stored in plain text. Please note that no personal payment information was stored by Sega, as we use external payment providers, meaning your payment details were not at risk from this intrusion.”
In a surprising turn of events, the hacking group responsible for compromising Sony and Nintendo, LulzSec has offered to track down Sega’s hackers, tweeting: “@Sega – contact us.” “We want to help you destroy the hackers that attacked you. We love the Dreamcast, these people are going down.
In response to the network breach, Sega shut down its Sega Pass Online Network and on a note on its website told customers that it was “undergoing improvements,” and said it was hoping to be up and running soon.
Sega also said that they reset all Sega passwords and logins, and advised its current customers to change their login information and passwords if they use the same ones on other services, according to Cnet. Sega also asked that customers be extra careful if they should “receive suspicious e-mails that ask for personal or sensitive information.”