Online fashion retailer hacked
Zappos forced to change passwords of 24 million customers
Cybercriminals have hacked into the Amazon-owned online fashion retail store Zappos, according to the BBC.
The company has been forced to reset the passwords of 24 million customers, as email addresses, names and other personal information may have been compromised.
Zappos has said that it does not believe that full credit card numbers were accessed, although the last four digits of users' credit card numbers may have been taken.
"We were recently the victim of a cyber-attack by a criminal who gained access to parts of our internal network and systems through one of our servers in Kentucky. We are co-operating with law enforcement to undergo an exhaustive investigation," said an email from Zappos chief executive Tony Hsieh to Zappos staff sent on Sunday and posted on the company website. "We've spent over 12 years building our reputation, brand, and trust with our customers. It's painful to see us take so many steps back due to a single incident."
Following the attack, Zappos contacted its 24 million customers and told them to choose new passwords and change passwords on any other site where they may have used the same or a similar password.
The Zappos.com site is currently closed to users from outside the United States.
693 days ago
Zappos is giving everyone a lesson on managing a data breach that everyone who may ever have to deal with the problem should look to for guidance. There is a lot to be learned. People understand that such things happen and, unless you've been egregiously lax in protecting their account information, will give you the benefit of the doubt. How you respond to the crisis will be what determines whether or not the issue is resolved with minimal damage or it deteriorates into a PR disaster. As I said, Zappos is giving us a real-time lesson on how to do crisis management properly and we should all be taking notes. For a more detailed analysis: http://blog.unibulmerchantservices.com/zappos-is-giving-us-a-lesson-on-managing-a-data-breach