[ISN] Zappos coughs to HUGE data breach

From: InfoSec News <alerts_at_private>
Date: Tue, 17 Jan 2012 05:27:01 -0600 (CST)
http://www.theregister.co.uk/2012/01/16/zappo_breach/

By John Leyden
The Register
16th January 2012

Online shoe and apparel outlet Zappos.com has apologised over a massive 
data breach that exposed the personal details of millions.

Up to 24 million customers of the Amazon subsidiary may have been 
affected by the breach, which exposed names, email addresses, addresses, 
phone numbers, and password hashes. Zappos stressed that credit card 
data was not exposed. Hackers may have been able to lift the last four 
digits of credit card numbers but nothing beyond this, according to the 
e-tailer.

Accounts or passwords maintained with parent firm Amazon.com are not 
affected by the problem.

At the time of writing on Monday morning, Zappos is blocking 
international traffic to its blog, so customers outside the US are 
unable to see chief exec Tony Hsieh's explanation on how the breach 
happened, which was posted late on Sunday night.

[...]


_____________________________________________________
Did a friend send you this article? Make it your
New Year's Resolution to subscribe to InfoSec News!
http://www.infosecnews.org/mailman/listinfo/isn
Received on Tue Jan 17 2012 - 03:27:01 PST

This archive was generated by hypermail 2.2.0 : Tue Jan 17 2012 - 03:29:22 PST