• Search:

The Chief Officers' Network - your business advantage / Industries / InfoTech & Comms / IT Security / IT Security: Zappos.Com admits huge security breach.

On-Line shoe retailer Zappos.Com's CEO, Tony Hsieh, has informed its customers that it has recently been "the victim of a cyber attack by a criminal who gained access to parts of our internal network and systems through one of our servers in Kentucky." Hsieh indicated, however, that "critical card data and other payment data was not affected or accessed."

James J. Giszczak of US law firm McDonald Hopkins says that this is yet another example of the new trend in data breach notifications. Although customers' full credit card number or banking information was not allegedly accessed, Zappos, like many other companies, has chosen to notify affected individuals of the incident.

The online shoe retailer has reset all passwords to the online accounts and has requested that its customers create a new password. Zappos is also recommending that customers change passwords on any other online accounts or websites where the customers may use the same or similar password. Affected individuals were also warned about phishing emails asking for personal information.

Customers' names, email addresses, billing and shipping addresses, phone numbers, the last four digits of their credit card numbers and their scrambled passwords may have been illegally accessed by hackers.

Some 24 million customers may have been affected.

Bookmark and Share

Tip a friend

Download PDF Download PDF version of this page





loading