Japanese game developer Sega confirmed to its Sega Pass users in an email sent on Friday that it has been hacked; details of around 1.29 million customers - including email, date of birth and more - are feared to have been stolen during the virtual raid.
It read: "Over the last 24 hours we have identified that unauthorised entry was gained to our Sega Pass database. We immediately took the appropriate action to protect our consumers' data and isolate the location of the breach. We have launched an investigation into the extent of the breach of our public systems."
A spokesperson for Sega told the BBC that the company was sorry for causing trouble to its customers, saying that they want to work on strengthening security, before adding that payment details like credit card and security numbers had not been compromised.
Sega has already taken down its Sega Pass service saying that it is going through some improvements and will be unavailable for new customers; existing customers will be asked to modify their details including their passwords.
The company's forums have also been taken down at the time of writing; Sega said that "essential maintenance was being carried out" and that they expect it to be available very soon.
As for the perpetrators of the crime, Lulzsec, the hacker group behind recent attacks on gaming websites such as Sony and Nintendo, said that they were not involved in this one, writing on their Twitter account "@Sega - contact us. We want to help you destroy the hackers that attacked you. We love the Dreamcast, these people are going down".