The woes for PSN users are getting from bad to worse. Reports are emerging that hackers are claiming to have credit card details of PlayStation Network users. On late Wednesday evening, Sony’s Senior Director of Corporate Communications & Social Media, Patrick Seybold said that the credit card information was encrypted. There are however contrary rumblings in underground forums.
In the line of fire…
The hackers claim to have a database with as many as 2.2 million credit card details which include customer names, addresses, usernames and passwords.
Senior threat researcher, Kevin Stevens from security firm, Trend Micro, revealed that he saw talk of the database in a number of hacker forums. He also says that these hackers would sell the database with the credit card information for upward of $100,000. Mr. Stevens further added that a forum member told him that the hackers contacted Sony regarding buying back the information but had received no response from them.
When asked about the hacker’s offer to sell the database information to Sony, Patrick Seybold rubbished it and said that to the best of his knowledge there was no truth in it whatsoever and that there was no offer to purchase the list. He still maintains that the credit card information was encrypted and that there is no evidence of credit card data being taken.
Mathew Solnik, a security consultant with iSEC Partners, frequents hacker forums to search for threats and vulnerabilities which could affect his clients claim that people on these hacker forums had details on the servers used by Sony. He believes that the hackers infiltrated the company’s servers by hacking the PS3 console thus getting access to the database.
There is no word about the hacking from the San Diego office of the Federal Bureau of Investigation which is helping Sony with its inquiry into the hacking incident.
For more information on the PSN outage please click here.