Zappos.com got hacked and your info has been leaked.
If you bought your wife or girlfriend a pair of expensive Ugg’s at Zappos.com, get ready for some unpleasant news.
Zappos has announced that more than 24 million accounts were compromised by hackers, and as a precaution it forcibly reset all of the users’ passwords.
In an email sent out today, Zappos.com said:
First, the bad news:
We are writing to let you know that there may have been illegal and unauthorized access to some of your customer account information on Zappos.com, including one or more of the following: your name, e-mail address, billing and shipping addresses, phone number, the last four digits of your credit card number (the standard information you find on receipts), and/or your cryptographically scrambled password (but not your actual password).
THE BETTER NEWS:
The database that stores your critical credit card and other payment data was NOT affected or accessed.
SECURITY PRECAUTIONS:
For your protection and to prevent unauthorized access, we have expired and reset your password so you can create a new password. Please follow the instructions below to create a new password.
We also recommend that you change your password on any other web site where you use the same or a similar password. As always, please remember that Zappos.com will never ask you for personal or account information in an e-mail. Please exercise caution if you receive any emails or phone calls that ask for personal information or direct you to a web site where you are asked to provide personal information.
PLEASE CREATE A NEW PASSWORD:
We have expired and reset your password so you can create a new password. Please create a new password by visiting Zappos.com and clicking on the “Create a New Password” link in the upper right corner of the web site and follow the steps from there.
We sincerely apologize for any inconvenience this may cause. If you have any additional questions about this process, please email us at passwordchange@zappos.com.
It’s ridiculous that Zappos allowed this to happen, as personal information is valuable in many ways: for example, some people use one password for every web site. This can allow the hackers to test passwords against email accounts, facebook and other locations.
After going through the process to reset the password, we have yet to receive a new one – we’ll keep you posted.
Dudh–nothing is secure………………………nooooooooothing
BullS – You might want to change your shoe size now that the hackers know! 😀
Glad I started using a password generator.
Nice title, btw 😉
Jorge – Thanks 🙂 Correct, you need different passwords for every account and a password generator helps.