The official website for Persona was hacked today after someone managed to gain access to the website’s admin section. Earlier on, Atlus had posted a countdown on their website, which will reach zero on May 5, teasing a future announcement regarding the game. Using this knowledge, the hacker posted a fake update (set to May 5) on the official website, announcing the release date and a PC version for the game. Soon after though, another update was posted, revealing the hack and the method used to gain access:
So if the post is to be believed, the reason the hacker gained access to the admin section of the website (which, like a lot of other websites, uses WordPress) simply due to the fact that Atlus used the name of one of their games as their password. This once again shows why it’s important to use strong passwords that are not easily guessed, especially on company websites. The good news is that it doesn’t seem like any information regarding the actual update was leaked.