Zappos Hacked, 24 Million Accounts Exposed

Posted by · January 16, 2012 12:45 pm

Popular online shoe retailer Zappos reported Monday that it fell victim to a cyber attack over the weekend. According to a Reuters report, the attack affected over 24 million accounts in the Zappos database. Included in the information stolen were customer names, email address, shipping and billing addresses, phone numbers, as well as the last four digits of credit card numbers and scrambled passwords.

The good news—if there can be any in such a situation—is that the hackers were unable to access the servers containing complete credit card numbers and other private financial information.

In an email that was later posted to the company blog on Sunday, Zappos CEO Tony Hsieh had the following to say:

We were recently the victim of a cyber attack by a criminal who gained access to parts of our internal network and systems through one of our servers in Kentucky. We are cooperating with law enforcement to undergo an exhaustive investigation.

In the meantime, the Amazon-owned company is recommending that its customers take the standard precautionary measure of changing their passwords, both on Zappos and on any other site on which the same or similar password is used. The company also reported that it would likely be switching off its phones for the time being considering the high volume of calls and is requesting those with concerns contact them via email instead.

In addition to the recommendations made by Zappos, I would personally recommend to those with Zappos accounts remove credit card information from their accounts and request a new card from their respective banks, especially if that particular credit card is one that is frequently used for online purchases.

Enhanced by Zemanta