Amazon-owned retailer Zappos.com hacked

Up to 24 million customers are affected in one of the bigger hacks of the past 12 months.

Hacker

Amazon-owned clothing retailer Zappos.com has been hacked, with up to 24 million customers affected.

The company has been forced to reset customer passwords after names, email addresses, billing and shipping addresses as well as the last four digits of credit card numbers were compromised.

Password hashes were also taken in what appears to be the biggest public data breach of 2012 thus far.

We have made the hard decision to temporarily turn off our phones...

Advertisement
Advertisement - Article continues below
Advertisement - Article continues below

The database storing customers' critical credit card data has not been accessed, however.

Non-US customers are currently blocked from accessing Zappos.com's statement on the company blog, but an email explaining the breach is circulating the web.

"We were recently the victim of a cyber attack by a criminal who gained access to parts of our internal network and systems through one of our servers in Kentucky," said Tony Hsieh, CEO of Zappos.com, in an email to employees.

"We are cooperating with law enforcement to undergo an exhaustive investigation.

"We have made the hard decision to temporarily turn off our phones and direct customers to contact us by email because our phone systems simply aren't capable of handling so much volume."

The email sent to users outlined what data may have been stolen, alongside details about how to gain a new password.

Advertisement - Article continues below

"We also recommend that you change your password on any other web site where you use the same or a similar password. As always, please remember that Zappos.com will never ask you for personal or account information in an e-mail," the email read.

Graham Cluley, senior technology consultant at Sophos, said it was an "ugly situation" for Zappos.com.

"One imagines that the decision to block access to the blog entry is to prevent it becoming overloaded with traffic - but, seriously, how hard is it to host an important message like this on another trusted site?" he added, in a blog post.

Featured Resources

Digital Risk Report 2020

A global view into the impact of digital transformation on risk and security management

Download now

6 ways your business could suffer if you don’t backup Office 365

Office 365 makes it easy to lose valuable data regularly, unpredictably, unintentionally, and for good

Download now

Get the best out of your workforce

7 steps to unleashing their true potential with robotic process automation

Download now

8 digital best practices for IT professionals

Don't leave anything to chance when going digital

Download now
Advertisement

Recommended

Visit/malware/33080/hackers-abuse-linkedin-dms-to-plant-malware
malware

Hackers abuse LinkedIn DMs to plant malware

25 Feb 2019
Visit/security/unified-threat-management-utm/354833/zyxel-nsg200-review-a-fine-spread-of-features
unified threat management (UTM)

Zyxel NSG200 review: A fine spread of features

21 Feb 2020
Visit/technology/artificial-intelligence-ai/354710/amazon-to-help-businesses-develop-custom-voices-for
artificial intelligence (AI)

Amazon to help businesses develop custom voices for Alexa

5 Feb 2020
Visit/cloud/cloud-computing/354478/microsoft-has-an-edge-on-aws-according-to-it-executives
cloud computing

Microsoft has an edge on AWS, according to IT executives

8 Jan 2020

Most Popular

Visit/mobile/28299/how-to-use-chromecast-without-wi-fi
Mobile

How to use Chromecast without Wi-Fi

5 Feb 2020
Visit/security/cyber-security/354827/mcafee-researchers-trick-tesla-autopilot-with-a-strip-of-tape
cyber security

McAfee researchers trick Tesla autopilot with a strip of tape

21 Feb 2020
Visit/operating-systems/27717/how-to-fix-a-stuck-windows-10-update
operating systems

How to fix a stuck Windows 10 update

12 Feb 2020
Visit/security/34616/the-top-ten-password-cracking-techniques-used-by-hackers
Security

The top ten password-cracking techniques used by hackers

10 Feb 2020