For what feels like years, people have been trying to figure out why Sony's elected to take PSN offline for nearly a week. The good news: You can stop wondering. The bad news: Do you value, say, your credit card info, address, birthdate, and PSN login? Well, Sony now “believes” that some sticky fingered ne'erdowell has made off with all that and more.
“Although we are still investigating the details of this incident, we believe that an unauthorized person has obtained the following information that you provided: name, address (city, state, zip), country, email address, birthdate, PlayStation Network/Qriocity password and login, and handle/PSN online ID. It is also possible that your profile data, including purchase history and billing address (city, state, zip), and your PlayStation Network/Qriocity password security answers may have been obtained,” the console-maker wrote in a recent PlayStation Blog update.
“While there is no evidence at this time that credit card data was taken, we cannot rule out the possibility. If you have provided your credit card data through PlayStation Network or Qriocity, out of an abundance of caution we are advising you that your credit card number (excluding security code) and expiration date may have been obtained.”
Sony then went on to caution customers against mail scams and things of the like, noting that it's not in the business of dressing up like a Nigerian prince and slyly coaxing your personal information out from its hidden alcove.
So yes, everyone wave to the nice Worst-Case Scenario. At the very least, Sony's desperation to mop up this mess is now understandable, but this is the type of ugly red mark few brands could survive. PlayStation, of course, will live to fight another day, but brand loyalty's a hard thing to keep when trust is out of the equation.