You’re embroiled in what may be the largest data breach in history, your customers are livid, your network's been down for over a week, and the media's piling on like a mob of defensive tackles. What do you do? You’re embroiled in what may be the largest data breach in history, your customers are livid, your network’s been down for over a week, and the media’s piling on like a mob of defensive tackles. What do you do?Answer more questions, that’s what. Sony spokesperson Patrick Seybold did last night in a new Q&A series on the official PlayStation blog, and while much of it’s still basically “no comment” paraphrased, he managed to slip in a few newsworthy bits.Like: The different ways PSN and Qriocity stored your sensitive payment and biographical personal data–Sony encrypted the former, but not the latter.“The entire credit card table was encrypted and we have no evidence that credit card data was taken,” writes Seybold in the update. “The personal data table, which is a separate data set, was not encrypted, but was, of course, behind a very sophisticated security system that was breached in a malicious attack.” What’s more, Sony says your credit card’s security code (the extra three or four digit validation number) couldn’t be compromised because the company never asked for it (though computer law expert Mike Godwin calls that “the weakest defense ever”).Still waiting for email notification from Sony? Seybold says “all registered accounts” should receive something by today, and that the process of cycling through all 77 million accounts “has been underway since yesterday.” And if you’re wondering why the service rebuild’s taking so long, Seybold says “we are initiating several measures that will significantly enhance all aspects of PlayStation Network’s security and your personal data, including moving our network infrastructure and data center to a new, more secure location, which is already underway.” He adds that Sony plans to say more about those measures shortly.In the meantime, both PSN and Qriocity services remain down, though Seybold says they’re expected back, at least in part, “within a week from yesterday.”Interact with Game On: Twitter – Facebook – Get in touch Related content news Okta confirms recent hack affected all customers within the affected system Contrary to its earlier analysis, Okta has confirmed that all of its customer support system users are affected by the recent security incident. By Shweta Sharma Nov 30, 2023 3 mins Data Breach Cyberattacks Cybercrime news Top cybersecurity product news of the week New product and service announcements from Wiz, Palo Alto Networks, Sophos, SecureAuth, Kasada, Lacework, Cycode, and more. By CSO staff Nov 30, 2023 17 mins Generative AI Security feature How to maintain a solid cybersecurity posture during a natural disaster Fire, flood, eathquake, hurricane, tornado: natural disasters are becoming more prevalent and they’re a threat to cybersecurity that isn’t always on a company’s radar. Here are some ways to prepare for the worst. By James Careless Nov 30, 2023 8 mins Security Operations Center Security Operations Center Security Operations Center news analysis Attackers could abuse Google's SSO integration with Windows for lateral movement Compromised Windows systems can enable attackers to gain access to Google Workspace and Google Cloud by stealing access tokens and plaintext passwords. By Lucian Constantin Nov 30, 2023 8 mins Multi-factor Authentication Single Sign-on Remote Access Security Podcasts Videos Resources Events SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe