海角大神

Skip to footer

Zappos hacked: What did we learn?

Lessons learned from the recent Zappos hack. 

|
Reuters
The Zappos shipping center in Kentucky.
  • By Matthew Shaer

On Sunday, Zappos CEO Tony Hsieh acknowledged that his company 鈥 a subsidiary of Amazon 鈥 had been hit by hackers, who managed to gain access to personal records for approximately 24 million shoppers. "We were recently the victim of a cyber attack by a criminal who gained聽access to parts of our internal network and systems through one of our聽servers in Kentucky," Hseih .

He stressed that Zappos was cooperating with law enforcement; exact details on the nature of the breach have not yet been disclosed.听

So what have we learned from the Zappos fiasco? Well, for one thing, we're reminded yet again that even big companies are vulnerable to attacks. "It鈥檚 disturbing," tech analyst 鈥 and recent online fraud victim 鈥 Barbara Scott the New York Times today. "Companies have to do a better job protecting our privacy. You would think companies like eBay and Amazon have the financial backing and wherewithal to take the proper security measures."

Of course, as Scott hints, Zappos isn't the only major company to be hit by hackers 鈥 only the most recent. And with e-commerce occupying an ever-larger part of our daily lives, it's safe to say that we'll see at least a few more high-profile hacks in coming months. Which brings us to our second question: How did Zappos handle the breach?聽

Actually, pretty handily, according to most analysts. Over at Information Week, Matthew J. Schwartz the eight lessons learned from the Zappos breach, including the importance of a detailed response plan. Schwartz quotes Tomer Teller, a security researcher at Check Point Software Technologies, who says Zappos "should be commended for alerting their customers in a timely fashion."聽

Not that everyone is completely enamored with the reaction from Team Zappos. "Disappointingly, there is no mention of the security breach on the front page of the Zappos website 鈥 one platform you would imagine they would use to inform their customers that there was a security problem of which they should be made aware," Graham Cluley, an analyst at Sophos.听

As for lessons, there are plenty to be learned, but perhaps chief among them is this: Change your passwords. A lot. "Typically people use one password to get into a number of systems," ABC analyst Brad Garrett. "And so as a result if you have someone鈥檚 password, you could easily compromise other accounts they have at other locations."

For more tech news, follow us on聽. And don鈥檛 forget to sign up for the weekly聽.

SEE ALSO: Five simple ways to protect yourself from identity theft

You've read  of  free articles. Subscribe to continue.
Real news can be honest, hopeful, credible, constructive.
海角大神 was founded in 1908 to lift the standard of journalism and uplift humanity. We aim to 鈥渟peak the truth in love.鈥 Our goal is not to tell you what to think, but to give you the essential knowledge and understanding to come to your own intelligent conclusions. Join us in this mission by subscribing.
QR Code to Zappos hacked: What did we learn?
Read this article in
/Technology/Horizons/2012/0117/Zappos-hacked-What-did-we-learn
QR Code to Subscription page
Start your subscription today
/subscribe