Zappos.com Hacked, Customer Details Leaked
Zappos.com is the victim of a cyber attack in which customer information was compromised.
Zappos.com has really stepped in it this time.
The footwear e-tailer has had to expire and reset passwords for its 24 million customers after discovering that one of its servers had been hacked, CNN reports.
"We were recently the victim of a cyber attack by a criminal who gained access to parts of our internal network and systems through one of our servers in Kentucky," CEO Tony Hsieh announced in an email to Zappos employees.
"We've spent over 12 years building our reputation, brand, and trust with our customers. It's painful to see us take so many steps back due to a single incident."
Customer details including names, email contacts, billing and shipping addresses, phone numbers, the last four digits of credit cards, and encrypted passwords were accessed by the hacker, though the company has assured its customers that full credit card numbers were stored on a separate, still-secure server.
Zappos will provide more details to help customers reset their passwords, but is turning off its phones while it gets its business back on track.
"If 5% of our customers call, that would be over 1 million phone calls, most of which would not even make it into our phone system in the first place," the email says.
Word to the wise: Exercise caution and reset any passwords you may have online. Just don't make it "1234," okay?
