SEGAbits Forums

Gaming => General Gaming Discussion => Topic started by: TimmiT on June 17, 2011, 12:28:58 pm

Title: SEGA Pass has been hacked, usernames, passwords etc. stolen
Post by: TimmiT on June 17, 2011, 12:28:58 pm

SEGA e-mailed this to a member of NeoGAF:

Quote

Dear cjelly,

As you may be aware, the SEGA Pass system has been offline since yesterday, Thursday 16 June.

Over the last 24 hours we have identified that unauthorised entry was gained to our SEGA Pass database.

We immediately took the appropriate action to protect our consumers’ data and isolate the location of the breach. We have launched an investigation into the extent of the breach of our public systems.

We have identified that a subset of SEGA Pass members emails addresses, dates of birth and encrypted passwords were obtained. To stress, none of the passwords obtained were stored in plain text.

Please note that no personal payment information was stored by SEGA as we use external payment providers, meaning your payment details were not at risk from this intrusion.

If you use the same login information for other websites and/or services as you do for SEGA Pass, you should change that information immediately.

We have also reset your password and all access to SEGA Pass has been temporarily suspended.

Additionally we recommend you please take extra caution if you should receive suspicious emails that ask for personal or sensitive information.

Therefore please do not attempt to login to SEGA Pass at present, we will communicate when the service becomes available.

We sincerely apologise for this incident and regret any inconvenience caused.

We are contacting all our members with these recommendations.

If you have any further questions please contact SEGA customer support on http://www.neogaf.com/forum/showthread.php?t=434322 (http://www.neogaf.com/forum/showthread.php?t=434322)

Time to change all your passwords again.

Also, before people draw conclusions, LulzSec said this on Twitter:

Quote

@Sega - contact us. We want to help you destroy the hackers that attacked you. We love the Dreamcast, these people are going down.

http://twitter.com/#!/LulzSec/status/81765889329991680 (http://twitter.com/#!/LulzSec/status/81765889329991680)

Title: Re: SEGA Pass has been hacked, usernames, passwords etc. stolen
Post by: max_cady on June 18, 2011, 06:41:09 am

Right now, I csn't get into the SEGA PASS website or the Sega Forums do change my details...

Title: Re: SEGA Pass has been hacked, usernames, passwords etc. stolen
Post by: SOUP on June 18, 2011, 06:50:02 am

Yeah. I got the email from them.....*sigh*

Title: Re: SEGA Pass has been hacked, usernames, passwords etc. stolen
Post by: Centrale on June 18, 2011, 10:48:32 am

Hmm, just got one of those as well.

Title: Re: SEGA Pass has been hacked, usernames, passwords etc. stolen
Post by: max_cady on June 20, 2011, 04:39:18 am

Well, I still can't change anything yet. Services are still unavailable. Though, I don't have any to worry about, at least not yet.

I never actually made any payments through Sega Pass for PSU, so I don't have anything there that could've been used to steal money.

Still, I not too confortable about this...

Title: Re: SEGA Pass has been hacked, usernames, passwords etc. stolen
Post by: Shigs on June 21, 2011, 02:23:47 pm

They said passwords were encrypted. Not stored as text. Sounds like they have better security than PSN did. XD

Oh well, not like I ever used my CC on that site.

Title: Re: SEGA Pass has been hacked, usernames, passwords etc. stolen
Post by: George on June 21, 2011, 04:35:05 pm

PSN where hatched, not in plain text files either. Lots of misinformation about PSN stuff.

Title: Re: SEGA Pass has been hacked, usernames, passwords etc. stolen
Post by: max_cady on June 24, 2011, 01:23:49 pm

Good lord, are they still offline? How big is this issue?