If you’re one of the 24 million people who have purchased shoes from Zappos.com recently, this email might have popped up in your inbox over the weekend:
We are writing to let you know that there may have been illegal and unauthorized access to some of your customer account information on Zappos.com, including one or more of the following: your name, e-mail address, billing and shipping addresses, phone number, the last four digits of your credit card number (the standard information you find on receipts), and/or your cryptographically scrambled password (but not your actual password).
Hackers targeted the company’s servers in Kentucky, which also contained customer information for 6pm.com. Luckily, credit card numbers were not accessed. Still, it’s a scary security breach for the online shoe giant — and the largest cyberattack of its kind since Sony’s massive hack last year — and might make some customers think twice about where they buy their Betsey Johnson wedges. [CNN Money]