infosec-news January 2012 archive
Main Archive Page > Month Archives  > infosec-news archives
infosec-news: [ISN] Zappos coughs to HUGE data breach

[ISN] Zappos coughs to HUGE data breach

From: InfoSec News <alerts_at_nospam>
Date: Tue Jan 17 2012 - 11:27:01 GMT
To: isn@infosecnews.org

http://www.theregister.co.uk/2012/01/16/zappo_breach/

By John Leyden
The Register
16th January 2012

Online shoe and apparel outlet Zappos.com has apologised over a massive
data breach that exposed the personal details of millions.

Up to 24 million customers of the Amazon subsidiary may have been
affected by the breach, which exposed names, email addresses, addresses,
phone numbers, and password hashes. Zappos stressed that credit card
data was not exposed. Hackers may have been able to lift the last four
digits of credit card numbers but nothing beyond this, according to the
e-tailer.

Accounts or passwords maintained with parent firm Amazon.com are not
affected by the problem.

At the time of writing on Monday morning, Zappos is blocking
international traffic to its blog, so customers outside the US are
unable to see chief exec Tony Hsieh's explanation on how the breach
happened, which was posted late on Sunday night.

[...]

_____________________________________________________
Did a friend send you this article? Make it your
New Year's Resolution to subscribe to InfoSec News!
http://www.infosecnews.org/mailman/listinfo/isn