Skip to main content

ICO to investigate Sony over PSN data breach

The UK's Information Commissioner's Office has confirmed that it will investigate Sony's ongoing security breach to its online infrastructure.

Speaking to Eurogamer, an ICO spokesperson said, "The Information Commissioner's Office takes data protection breaches extremely seriously. Any business or organisation that is processing personal information in the UK must ensure they comply with the law, including the need to keep data secure.

"We have recently been informed of an incident which appears to involve Sony. We are contacting Sony and will be making further enquiries to establish the precise nature of the incident before deciding what action, if any, needs to be taken by this office."

The ICO might have to get in line as a long list of aggravated individuals and organisations try to unravel how what appears to be a lone hacker managed to break into one of the world's largest corporation's servers and steal the personal details of up to 77 million subscribers.

According to Games Industry Biz, US Senator Richard Blementhal has already written to Sony's Jack Tretton saying that he was troubled by the company's failure to keep its customers notified about the situation, despite being aware that a criminal goldmine of user information had been stolen.

"Although the breach occurred nearly a week ago, Sony has not notified customers of the intrusion, or provided information that is vital to allowing individuals to protect themselves from identity theft, such as informing users whether their personal or financial information may have been compromised. Nor has Sony specified how it intends to protect these consumers," he wrote.

Sony has advised customers to keep an eye on transactions made using the credit card associated with their PSN accounts but Graham Cluely from Sophos went one step further in an interview with the BBC. advising PSN subscribers to immedialtely cancel any such cards.