Sony Corporation has provided an update about the PlayStation Network situation on their blog. A hacker penetrated their network between April 17 and April 19 and had obtained the personal information about a lot of users. One of the biggest questions that people had was whether their credit cards were taken. Sony provided the following response.
While all credit card information stored in our systems is encrypted and there is no evidence at this time that credit card data was taken, we cannot rule out the possibility. If you have provided your credit card data through PlayStation Network or Qriocity, out of an abundance of caution we are advising you that your credit card number (excluding security code) and expiration date may have been obtained. Keep in mind, however that your credit card security code (sometimes called a CVC or CSC number) has not been obtained because we never requested it from anyone who has joined the PlayStation Network or Qriocity, and is therefore not stored anywhere in our system.