Sony suspended its online games in early May “until we could verify their security,” the company said. The company said it initially thought SOE customer data hadn’t been stolen in the attacks. Information affected may include a user’s name, address, email, gender, birth date, and phone number. Sony protected the passwords that were stolen using “a cryptographic hash function,” not encryption, a problem. The data may end up built into a botnet, which could use legitimate credentials to bypass spam filters and security defenses.”]
Source: https://www.darkreading.com/attacks-breaches/sony-reels-from-massive-customer-data-breach