Sega Pass System Hacked, Company Informs Customers

June 17, 2011

According to a letter posted by our very own E. Zachary Knight at his personal website ezknight.net, Sega has been hacked, and the scope and scale of the security breach seems to be grand in nature. According to the email from Sega, the company was forced to take down its "Sega Pass System" yesterday after it identified that an "unauthorized entry" had occurred with the system's user database.

A "subset" of SEGA Pass members' emails addresses, dates of birth and encrypted passwords were  stolen during that intrusion, says Sega. Thankfully, no credit card or other personal financial information was stolen, and Sega stressed that the stolen data was encrypted and not in "plain text" format.

The usual warnings come with the email: change your password and watch out for any suspicious emails that might ask you to divulge further information. As a rule companies do not ask users to provide personal information within emails.

The full letter can be found below:

Dear XXXX,

As you may be aware, the SEGA Pass system has been offline since yesterday, Thursday 16 June.

Over the last 24 hours we have identified that unauthorised entry was gained to our SEGA Pass database.

We immediately took the appropriate action to protect our consumers’ data and isolate the location of the breach. We have launched an investigation into the extent of the breach of our public systems.

We have identified that a subset of SEGA Pass members emails addresses, dates of birth and encrypted passwords were obtained. To stress, none of the passwords obtained were stored in plain text.

Please note that no personal payment information was stored by SEGA as we use external payment providers, meaning your payment details were not at risk from this intrusion.

If you use the same login information for other websites and/ or services as you do for SEGA Pass, you should change that information immediately.

We have also reset your password and all access to SEGA Pass has been temporarily suspended.

Additionally we recommend you please take extra caution if you should receive suspicious emails that ask for personal or sensitive information.

Therefore please do not attempt to login to SEGA Pass at present, we will communicate when the service becomes available.

We sincerely apologise for this incident and regret any inconvenience caused.

We are contacting all our members with these recommendations.

If you have any further questions please contact SEGA customer support on: mailto:csescalations@sega.com

Thanks to E. Zachary Knight and Andrew Eisen for the tips.
Forgot your password?
Username :
Password :

Shout box

You're not permitted to post shouts.
tallimarhttp://news.cnet.com/8301-1035_3-57440902-94/microsoft-legal-win-over-google-may-signal-ceasefire/05/24/2012 - 10:17pm
ZippyDSMleeTIme or an operation!05/24/2012 - 6:43pm
ZippyDSMleePC parts are in wish me luck or hell!!05/24/2012 - 6:43pm
MaskedPixelante38 Studios and Big Huge Games are pretty much dead now. http://www.joystiq.com/2012/05/24/38-studios-and-big-huge-games-lay-off-entire-staffs05/24/2012 - 4:39pm
DorthLousActually, nop, I did miss the emoticon for some reason (getting used to pics?) and I didn't know you changed it since (since I posted previous to my shout and it was still there.) Anyhow, thanks for taking it out!05/23/2012 - 6:01pm
james_fudgeWell we were just testing it. but it is still on the submission to fight $pam.05/23/2012 - 5:48pm
E. Zachary KnightJames, No I don't have it. I was just wondering who does and why. More curiosity than anything.05/23/2012 - 5:38pm
james_fudgeDid you not see the emoticon and did you not see that it has already been changed back?05/23/2012 - 5:10pm
james_fudgeLOL05/23/2012 - 5:07pm
DorthLousWhy? Not shocked that people are barking to an additional hoop to jump through when posting from their already logged in account or just mentionning this to try to paint me as one always complaining?05/23/2012 - 4:45pm
james_fudgebig shock there ;)05/23/2012 - 4:30pm
DorthLousI'll add my voice to those wanting it gone :S I'm already logged in, I don't need a captch'a. That's for those registering.05/23/2012 - 3:54pm
james_fudgeEt tu EZK?!?05/23/2012 - 3:51pm
Craig R.I'm a One Man Quorum! And it's working for me now, thanks. :)05/23/2012 - 3:48pm
E. Zachary KnightHow do we determine who get's the game/captcha thingy? Is there a certain posting threshhold users have to meet before it is turned off?05/23/2012 - 2:25pm
james_fudgeGive it a chance, we're still adjusting it ;)05/23/2012 - 11:20am
james_fudgeOne does not a Quorum make Craig.05/23/2012 - 11:16am
Craig R.If I complete the stupid game, and it just deletes my comment, what's the point?05/23/2012 - 11:15am
Craig R.Ok, the little captcha game? You can get rid of it already.05/23/2012 - 11:13am
Craig R.FCC boss is giving the thumbs up to usage-based pricing for Internet access05/23/2012 - 11:08am
All shouts

Be Heard - Contact Your Politician