Update 11:15am: After some followup with our Japanese correspondant (Thanks, Ittousai!) we've updated the below story. Notably, the data was not from the PSN breach; rather, it was obtained from a publicly exposed file on Sony's own website, as revealed in this tweet two days ago. It's unclear what Reuters meant when it reported that the information "had been stolen by hackers and posted on a website" that Sony subsequently removed. It appears that Sony was able to remove the data from the website because ... it was Sony's own website! While this isn't related to the PSN attack, it is similarly emblematic of Sony's overall inability to protect sensitive customer data. You'll find our original (and erroneous) report after the break.
Update 11:56am: Included Sony's statement under More Coverage.