E-mail Marketer Epsilon Loses Customer Names and E-mails to Hackers

By Tracey E. Schelmetic April 04, 2011

E-mail marketing company Epsilon has had a database hacked, resulting in theft of email addresses and names of many of the company's corporate customers. The company's clients include JP Morgan, Kroger, Capital One, Citigroup and TiVo, reported Bloomberg.

Affected companies have reportedly investigated and have said that no sensitive personal information such as passwords or credit card numbers have been compromised. The hackers did gain names and e-mail addresses of the affected companies' customers. Live e-mail addresses can often be resold to online marketers for high prices.

JPMorgan and Kroger disclosed news of the breach yesterday. The data was managed by Epsilon, a Dallas-based provider of e-mail marketing services and a subsidiary of Alliance Data Services. Capital One and TiVo issued statements today. The information was gained by a person outside Epsilon, according to separate statements.

Jessica Simon, a spokeswoman for Epsilon, declined to say how many more companies might be affected, citing a continuing investigation. She said she didn’t have details on which law enforcement agencies might be involved in the probe.

Security blogger Paul Ducklin of computer security firm Sophos wrote that the breach may not be as harmless as Epsilon and its affected customers are saying. “Losing your email address to scammers and spammers is likely to mean a surge in spam to your account,” noted Ducklin.

But more seriously, “Losing your email address via a service to which you already belong makes it much easier for scammers to hit you with emails which match your existing interests, at least loosely. That, in turn, can make their fraudulent correspondence seem more believable,” he wrote.

Epsilon's other clients include Verizon, Hilton Hotels, Kraft Foods, Walgreens, Best Buy, Lacoste and AstraZeneca. As more and more companies are identified as Epsilon customers, the scope of the data theft is widening, and many analysts are already saying that it could be one of the biggest data breaches in U.S. history.

Epsilon said the breach occurred March 30.


Tracey Schelmetic is a contributing editor for TechZone360. To read more of Tracey's articles, please visit her columnist page.

Edited by Janice McDuffee

TechZone360 Contributor

SHARE THIS ARTICLE
Related Articles

6 Challenges of 5G, and the 9 Pillars of Assurance Strategy

By: Special Guest    9/17/2018

To make 5G possible, everything will change. The 5G network will involve new antennas and chipsets, new architectures, new KPIs, new vendors, cloud di…

Read More

Putting the Flow into Workflow, Paessler and Briefery Help Businesses Operate Better

By: Cynthia S. Artin    9/14/2018

The digital transformation of business is generating a lot of value, through more automation, more intelligence, and ultimately more efficiency.

Read More

From Mainframe to Open Frameworks, Linux Foundation Fuels Up with Rocket Software

By: Special Guest    9/6/2018

Last week, at the Open Source Summit, hosted by The Linux Foundation, the Open Mainframe Project gave birth to Zowe, introduced a new open source soft…

Read More

Unified Office Takes a Trip to the Dentist Office

By: Cynthia S. Artin    9/6/2018

Not many of us love going to see the dentist, and one company working across unified voice, productivity and even IoT systems is out to make the exper…

Read More

AIOps Outfit Moogsoft Launches Observe

By: Paula Bernier    8/30/2018

Moogsoft Observe advances the capabilities of AIOps to help IT teams better manage their services and applications in the face of a massive proliferat…

Read More