Sony attempts to clarify Lulz Security hack

On June 2, Lulz Security claimed credit for an extensive digital raid against Sony Pictures Entertainment (SPE).



After conducting the hack and extract operation, Lulz said it had managed to obtain the passwords, email addresses, home addresses and DOB’s of over 1,000,000 users.

Although Sony acknowledges the above-mentioned hack, the corporation is now disputing the extent of the security breach.

“[We [have] provided notice to the approximately 37,500 people who may have had some personally identifiable information stolen during the recent attack on sonypictures.com,” SPE clarified in an official statement.



“[In addition], SPE did not request, and the stolen information did not include, any credit card information, social security numbers or driver license numbers from these people.”



However, SPE concedes “one or more unauthorized persons may have obtained” names, addresses, email addresses, telephone numbers, genders, dates of birth, website passwords and user names.

As such, Sony recommends users be “aware of email, telephone and postal mail scams that ask for personal or sensitive” information.

“[We] will not contact you by email or otherwise to ask for your credit card number or social security number. If you are asked for this information, you can be confident Sony Pictures Entertainment is not the entity asking,” SPE emphasized. 

“When our website features are fully restored, we strongly recommend you log on and change your password. If you use your Sony Pictures website user name or password for other unrelated services or accounts, we strongly recommend that you change them there, as well.”