Massive Security Breach Exposes Millions of Emails, Names
Best Buy, JP Morgan Chase, Citi, Walgreens and Capitol One are among a list of major U.S. companies whose email databases were exposed in a massive security breach last week.
The breach occurred March 30 at Epsilon, a Texas-based firm that handles email communications for more than 2,500 clients worldwide, including seven of the Fortune 10 companies. Epsilon sends 40 billion emails annually. So far, 25 companies have come forward as affected by the breach.
The first company to report the data breach was the grocery chain Kroger. From there, it quickly spiraled, as a barrage of companies came forward over the weekend to report their email databases had been accessed without permission.
The list currently includes: TiVo, Barclays Bank of Delaware, McKinsey & Company, Marriott Rewards, Ritz-Carlton Rewards, New York & Company, Brookstone, L.L. Bean, Ameriprise Financial, The College Board, The Home Shopping Network, Lacoste, Disney Destinations, Ralphs, Food 4 Less, Fred Meyer, Fry’s, King Soopers and City Market, security news blog SecurityWeek.com reported.
Fortunately for those affected, the stolen email lists included only customers’ names and email addresses; no financial information was accessed.
“A rigorous assessment determined that no other personal identifiable information associated with those names was at risk,” Epsilon said in a press release.
Customers of any the companies affected may receive spam and phishing emails as a result of the breach.