Final Fantasy publisher Square Enix has confirmed last weeks reports of attacks on its websites by a group of hackers thought to be a splinter group from hacktivist collective Anonymous. Initial reports suggested that the personal data of up to 80,000 users had been stolen, along with 9000 résumés, though the company has confirmed that the scale of the breach, while still serious, is probably smaller.
"Square Enix can confirm a group of hackers gained access to parts of our Eidosmontreal.com website as well as two of our product sites," the company confirmed in a statement. "We immediately took the sites offline to assess how this had happened and what had been accessed, then took further measures to increase the security of these and all of our websites, before allowing the sites to go live again.
"Regrettably up to 350 of these resumes may have been accessed, and we are in the process of writing to each of the individuals who may have been affected to offer our sincere apologies for this situation. In addition, we have also discovered that up to 25,000 email addresses were obtained as a result of this breach. These email addresses are not linked to any additional personal information. They were site registration email addresses provided to us for users to receive product information updates.
"No dissemination or misappropriation of any other personal information has been identified at this point. We take the security of our websites extremely seriously and employ strict measures, which we test regularly, to guard against this sort of incident."
According to Square Enix, no credit card details were stored on any of the affected sites.