The company says hackers obtained personal information for all of the service's 70 million subscribers. Still unclear is whether the credit card information on file with the service was compromised.
"Although we are still investigating the details of this incident, we believe that an unauthorized person has obtained the following information that you provided: name, address (city, state, zip), country, email address, birthdate, PlayStation Network/Qriocity password and login, and handle/PSN online ID," wrote Patrick Seybold, senior director of corporate communications for Sony Computer Entertainment America, on the company's blog. "It is also possible that your profile data, including purchase history and billing address … and your PlayStation Network/Qriocity password security answers may have been obtained. … While there is no evidence at this time that credit card data was taken, we cannot rule out the possibility."
Sony shut the system down after noticing the attack and has not given a firm date for when it will once again go live. The company says it expects to restore some services within a week.
To date, no group or individual has claimed credit for the attack.