Sega Pass System Hacked, Company Informs Customers

June 17, 2011 -

According to a letter posted by our very own E. Zachary Knight at his personal website ezknight.net, Sega has been hacked, and the scope and scale of the security breach seems to be grand in nature. According to the email from Sega, the company was forced to take down its "Sega Pass System" yesterday after it identified that an "unauthorized entry" had occurred with the system's user database.

A "subset" of SEGA Pass members' emails addresses, dates of birth and encrypted passwords were  stolen during that intrusion, says Sega. Thankfully, no credit card or other personal financial information was stolen, and Sega stressed that the stolen data was encrypted and not in "plain text" format.

The usual warnings come with the email: change your password and watch out for any suspicious emails that might ask you to divulge further information. As a rule companies do not ask users to provide personal information within emails.

The full letter can be found below:

Dear XXXX,

As you may be aware, the SEGA Pass system has been offline since yesterday, Thursday 16 June.

Over the last 24 hours we have identified that unauthorised entry was gained to our SEGA Pass database.

We immediately took the appropriate action to protect our consumers’ data and isolate the location of the breach. We have launched an investigation into the extent of the breach of our public systems.

We have identified that a subset of SEGA Pass members emails addresses, dates of birth and encrypted passwords were obtained. To stress, none of the passwords obtained were stored in plain text.

Please note that no personal payment information was stored by SEGA as we use external payment providers, meaning your payment details were not at risk from this intrusion.

If you use the same login information for other websites and/ or services as you do for SEGA Pass, you should change that information immediately.

We have also reset your password and all access to SEGA Pass has been temporarily suspended.

Additionally we recommend you please take extra caution if you should receive suspicious emails that ask for personal or sensitive information.

Therefore please do not attempt to login to SEGA Pass at present, we will communicate when the service becomes available.

We sincerely apologise for this incident and regret any inconvenience caused.

We are contacting all our members with these recommendations.

If you have any further questions please contact SEGA customer support on: mailto:csescalations@sega.com

Thanks to E. Zachary Knight and Andrew Eisen for the tips.


 
Forgot your password?
Username :
Password :

Shout box

You're not permitted to post shouts.
InfophileRelevant to this site: http://nielsenhayden.com/makinglight/archives/015984.html#015984 - Apparently allowing comments to be downvoted leads to worse behaviour09/22/2014 - 6:18am
Andrew EisenMP - I love that game but damn my squadmates are bozos.09/21/2014 - 10:05pm
MaskedPixelanteSWAT teams should be banned until they; 1. Learn not to walk into enemy fire, 2. Learn to throw the flashbang INTO the doorway, not the frame and 3. Stop complaining that I'm in their way.09/21/2014 - 9:53pm
Craig R.I'm getting of the opinion that SWAT teams nationwide should be banned. This probably isn't even the most absurd situation in which they've been used.09/21/2014 - 9:26pm
Andrew EisenAnd, predictably, it encouraged more parody accounts, having the exact opposite effect than what was intended.09/21/2014 - 7:07pm
E. Zachary KnightThis is called a police state people. When public officials can send SWAT raids after anyone for any offense, we are no longer free.09/21/2014 - 6:41pm
E. Zachary KnightJudge rules SWAT raid tageting parody Twitter account was justified. http://www.theguardian.com/world/2014/sep/19/illinois-judge-swat-raid-parody-twitter-peoria-mayor09/21/2014 - 6:41pm
MechaTama31quik: But even if it did break, at worst it is only as bad as the powder. Even that is assuming that it is dangerous through skin contact, which is not a given if its delivery vehicle is a syringe.09/21/2014 - 4:30pm
MaskedPixelantehttp://www.forbes.com/sites/insertcoin/2014/09/20/isis-uses-gta-5-in-new-teen-recruitment-video/09/21/2014 - 4:25pm
quiknkoldSyringes can break. And in a transcontinental delivery, the glass could've broken when crushed. I work in a mail center. Shit like this is super serious09/21/2014 - 3:25pm
E. Zachary KnightIt doesn't matter what is inside the needle. As long as it requires him to take the step of purposefully injecting himself, the threat of the substance is as close to zero as you can get.09/21/2014 - 1:27pm
quiknkoldEzach: I'm not talking about the needle. I'm talking about what's inside. Geeze. Depending on what it is, the sender could be guilty of bioterrorism.09/21/2014 - 12:51pm
E. Zachary Knightquiknkold, No. That syringe is not worse than white powder or a bomb. The syringe requires the recipient to actually inject themselves. Not true for other mail threats.09/21/2014 - 12:49pm
Andrew EisenThe closest to a threat I ever received was a handwritten note slipped under my door that read "I KNOW it was you." Still no idea what that was about. I think the author must have got the wrong apartment.09/21/2014 - 12:28pm
InfophileThat's what they call it? I always called it hydroxic acid...09/21/2014 - 11:57am
MaskedPixelanteProbably dihydrogen monoxide, the most dangerous substance in the universe.09/21/2014 - 10:14am
james_fudgewell I hope he called the police so they can let us all know.09/21/2014 - 9:07am
quiknkoldIt's pretty gnarly. Depending on what it is, it could be worse than white powder or a fake bomb.09/21/2014 - 9:06am
james_fudgeI just looked it up on UPS.com09/21/2014 - 8:56am
james_fudgeand expensive for an American to ship to London.09/21/2014 - 8:55am
 

Be Heard - Contact Your Politician