Another day, another security breach. Sega sent out a notice to Sega Pass users that its database had been hacked. The system has been offline since yesterday, and the company confirmed "unauthorized entry was gained." A timeline of when the intrusion occurred wasn't disclosed, but Sega assures users that it took action "immediately" and has launched an investigation.
Sega Pass member e-mails, dates of birth, and encrypted passwords were obtained by the intruders, but payment information is handled by a third-party, so credit card data isn't at risk. Sega does warn, however, that if you use similar usernames and passwords for other sites, you should change them.
In the meantime, Sega is resetting all passwords and suspending Sega Pass for the time being. The company says it will communicate when the service becomes available. "We sincerely apologise for this incident and regret any inconvenience caused." It recommends contacting customer support with further questions.
Though the hacker group LulzSec has claimed responsibility for a string of recent attacks, it isn't taking credit for this one. In a tweet, it asks Sega to contact them. "We want to help you destroy the hackers that attacked you," it read. "We love the Dreamcast, these people are going down."