Barbara's Beat: Zappos.com has been hacked
Sam's Club

Tuesday, January 17, 2012

Zappos.com has been hacked


Yesterday, I received an email from Zappos.com explaining there may have been illegal and unauthorized access to some of my customer account information including: name, email, billing and shipping address, phone number, and the lat four digits of my credit card, as well as the scrambled password. 

But, I am not the only one that was hacked. Millions of customers must be on alert for fraudulent activity on their accounts.

Zappos said in it's email the database that stores our critical credit card and other payment data was not affected or accessed. But, we need to take security precautions.

For our protection, we must change our password on any web site where we use the same or similar password as we did on Zappos.com. Never give out your personal information in an email or phone calls that direct you to a web site.

As for Zappos.com, they reset all passwords. To create a new one, we must click on the upper right corner of it's site and follow the directions.

Keep an eye out for any unauthorized charges to your account and report them to your bank, credit card and Zappos.com.

http://www.zappos.com/passwordchange

Password Change

On January 15, 2012, as a security precaution, we reset and expired the passwords for our customers.
Please click here to create a new password for your Zappos account.
You can read the email that was sent to customers below.
You can also read the email that our CEO sent to employees about the password change and security incident here.
If you have any additional questions, please email securityquestions@zappos.com
-----------------------------------------------------------
Our original email to customers is below:
Subject: Information on the Zappos.com site - please create a new password
First, the bad news:
We are writing to let you know that there may have been illegal and unauthorized access to some of your customer account information on Zappos.com, including one or more of the following: your name, e-mailaddress, billing and shipping addresses, phone number, the last four digits of your credit card number (the standard information you find on receipts), and/or your cryptographically scrambled password (but not your actual password).
THE BETTER NEWS:
The database that stores your critical credit card and other payment data was NOT affected or accessed.
SECURITY PRECAUTIONS:
For your protection and to prevent unauthorized access, we have expired and reset your password so you can create a new password. Please follow the instructions below to create a new password.
We also recommend that you change your password on any other web site where you use the same or a similar password. As always, please remember that Zappos.com will never ask you for personal or account information in an e-mail. Please exercise caution if you receive any emails or phone calls that ask for personal information or direct you to a web site where you are asked to provide personal information.
PLEASE CREATE A NEW PASSWORD:
We have expired and reset your password so you can create a new password. Please create a new password by visiting Zappos.com and clicking on the "Create a New Password" link in the upper right corner of the web site and follow the steps from there.
We sincerely apologize for any inconvenience this may cause. If you have any additional questions about this process, please email us at passwordchange@zappos.com
Share/Save/Bookmark

No comments: