One of the country's largest e-mail marketing firms, Epsilon, reported that on March 30th, “a subset of Epsilon clients’ customer data [was] exposed by an unauthorized entry into Epsilon’s email system."
Epsilon is a subsidiary of Alliance Data Systems and sends over 40 billion emails annually for their clients. These clients include 7 of the top Fortune 10 companies.
Companies whose clients may have been affected by this breach include:
Brookstone
Capital One Financial Corp.
Citigroup
J.P. Morgan Chase & Co.
Kroger Co.
Marriott International Inc.
McKinsey & Co.
New York & Co.
Ritz-Carlton
TiVo Inc.
US Bancorp
Walgreen Co.
The hackers were only able to access names and email addresses, and it is still unknown if the information has been used in any email based attacks aimed at obtaining credit card or social security numbers.
This attack reminds us to be vigilant and skeptical of all unsolicited emails or emails from unknown senders. Keep in mind the following tips next time you check your email:
- Under no circumstances should anyone respond to an email from an unknown or known party that asks for sensitive personal data.
- If you receive an email from an unknown sender, delete it and mark it as spam in your email client. If you receive an email asking for personal or financial information from an organization that you are a customer of, notify their customer service office immediately.
- Also, do not click on links in email or pop-up messages that may come up after clicking a link in an email that asks for your personal or financial information.
- Always use anti-spyware software and a firewall to protect your computer.
- Never open or download attachments from an email from an unknown sender.
