Posted By: Shrygue
via Computer and Video Games
Sony has moved to debunk reports that a list of millions of credit card numbers acquired via last week's PSN breach was offered for sale.
He also clears speculation that PSN passwords were stored completely unprotected on Sony's servers. "While the passwords that were stored were not 'encrypted,' they were transformed using a cryptographic hash function," said Seybold.
Sony's Patrick Seybold said via the PS Blog: "We want to state this again given the increase in speculation about credit card information being used fraudulently.
"One report indicated that a group tried to sell millions of credit card numbers back to Sony. To my knowledge there is no truth to this report of a list, or that Sony was offered an opportunity to purchase the list," he said.
He reiterates previous advice for users not to respond to any requests for personal information or PSN details as Sony will not request them, and advises you change any passwords for unrelated services that are the same or similar to the password you used for PSN.
"There is a difference between these two types of security measures which is why we said the passwords had not been encrypted. But I want to be very clear that the passwords were not stored in our database in cleartext form," he added.
DC Universe Online developer, Sony Online Entertainment, has today shut down its servers over concerns of a possible intrusion.
Sony says PSN will go live "this week".