Webwinkel Play.com lekt klantgegevens
De populaire Britse webwinkels Play.com heeft met een aanval te maken gehad waardoor klantgegevens in handen van spammers zijn gekomen. Naar eigen zeggen vond het lek plaats bij een derde partij die de marketing voor Play.com doet, hoewel de webwinkel niet de naam van het marketingbureau wil noemen.
Klanten van wie het e-mailadres uitlekte ontvingen een spambericht, waarin een Adobe Reader upgrade werd aangeboden. Wie de PDF-lezer wilde downloaden moest zijn creditcardgegevens invullen. Play.com heeft inmiddels klanten gewaarschuwd dat namen en e-mailadressen zijn buitgemaakt. De gelinkte website in het spambericht wordt inmiddels door verschillende browsers als zijnde een phishingpagina geblokkeerd.
Chrome herkent ook netjes de website als een phishing site.
See how Adobe Acrobat X Reader is a step above anything you've experienced before, so you can be even more productive.
Upgrade now: http://www.official-adobe-acrobatx.com
Just how much faster can you work with Adobe Acrobat PDF Reader
software? Fast enough to stay on top of last-minute changes, connect
with key decision makers, and share updates with co-workers.
You'll discover how easy it is to reuse content by exporting PDF files
to Microsoft Word or Excel formats. And how quickly you can automate
multi-step tasks with new, guided Actions. No wonder PC Magazine
says, "There's a lot to like in Acrobat X PDF Reader." See for yourself at :
http://www.official-adobe-acrobatx.com
Copyright 2011 Adobe Systems Incorporated. All rights reserved.
Adobe Systems Incorporated
343 Preston Street
Ottawa, ON K1S 1N4
Canada
Vind het vrij netjes behandeld, nog geen spam ontvangen met acro zaken.
Dear Customer,
Email Security Message
We are emailing all our customers to let you know that a company that handles part of our marketing communications has had a security breach. Unfortunately this has meant that some customer names and email addresses may have been compromised.
We take privacy and security very seriously and ensure all sensitive customer data is protected. Please be assured this issue has occurred outside of Play.com and no other personal customer information has been involved.
Please be assured we have taken every step to ensure this doesn’t happen again and accept our apologies for any inconvenience this may have caused some of you.
Customer Advice
Please do be vigilant with your email and personal information when using the internet. At Play.com we will never ask you for information such as passwords, bank account details or credit card numbers. If you receive anything suspicious in your email, please do not click on any links and forward the email on to privacy@play.com for us to investigate.
Thank you for continuing to shop at Play.com and we look forward to serving you in the future.
Play.com Customer Service Team
************************************************************************
Confidentiality: This e-mail and any files transmitted with it are
confidential and intended solely for the use of the individual or entity
to whom they are addressed. If you have received this e-mail in error
please notify the sender immediately and delete this message from your
computer without further action. Any dissemination, distribution or
copying of this message or any files transmitted with it by an
unauthorised recipient is strictly prohibited.
Viruses: This message has been swept for viruses but we cannot guarantee
that this e-mail or its attachments are virus free nor accept
responsibility for any virus inadvertently transmitted herewith.
************************************************************************
Dear Customer,
As a follow up to the email we sent you last night, I would like to give you some further details. On Sunday the 20th of March some customers reported receiving a spam email to email addresses they only use for Play.com. We reacted immediately by informing all our customers of this potential security breach in order for them to take the necessary precautionary steps.
We believe this issue may be related to some irregular activity that was identified in December 2010 at our email service provider, Silverpop. Investigations at the time showed no evidence that any of our customer email addresses had been downloaded. We would like to assure all our customers that the only information communicated to our email service provider was email addresses. Play.com have taken all the necessary steps with Silverpop to ensure a security breach of this nature does not happen again.
We would also like to reassure our customers that all other personal information (i.e. credit cards, addresses, passwords, etc.) are kept in the very secure Play.com environment. Play.com has one of the most stringent internal standards of e-commerce security in the industry. This is audited and tested several times a year by leading internet security companies to ensure this high level of security is maintained. On behalf of Play.com, I would like to once again apologise to our customers for any inconvenience due to a potential increase in spam that may be caused by this issue .
Best regards,
John
John Perkins
CEO
Play.com
Deze posting is gelocked. Reageren is niet meer mogelijk.
Junior DevOps Engineer
Certified Secure is op zoek naar een Junior DevOps Engineer. Deze functie is een stuk interessanter dan de term doet vermoeden! Om jou als potentiële nieuwe collega meteen te laten zien wat we doen hebben we speciaal voor jou een selectie gemaakt van een aantal leuke security challenges. Are you ready for a challenge?
Cybersecurity Trainer / Streamer
Toe aan een nieuwe nieuwe job waarmee je het verschil maakt? In de Certified Secure trainingen laat je deelnemers zien hoe actuele kwetsbaarheden structureel verholpen worden. Ook werk je actief mee aan de ontwikkeling van onze gamified security challenges. Bij het maken van challenges kom je telkens nieuwe technieken tegen, van Flutter tot GraphQL, van Elastic Search tot Kubernetes.
