image

Webwinkel Play.com lekt klantgegevens

dinsdag 22 maart 2011, 15:44 door Redactie, 8 reacties

De populaire Britse webwinkels Play.com heeft met een aanval te maken gehad waardoor klantgegevens in handen van spammers zijn gekomen. Naar eigen zeggen vond het lek plaats bij een derde partij die de marketing voor Play.com doet, hoewel de webwinkel niet de naam van het marketingbureau wil noemen.

Klanten van wie het e-mailadres uitlekte ontvingen een spambericht, waarin een Adobe Reader upgrade werd aangeboden. Wie de PDF-lezer wilde downloaden moest zijn creditcardgegevens invullen. Play.com heeft inmiddels klanten gewaarschuwd dat namen en e-mailadressen zijn buitgemaakt. De gelinkte website in het spambericht wordt inmiddels door verschillende browsers als zijnde een phishingpagina geblokkeerd.

Reacties (8)
22-03-2011, 15:52 door meinonA
Ff kijken: jep, in de spam box van m'n GMail staat inderdaad een mooie Adobe Reader mail!

Chrome herkent ook netjes de website als een phishing site.

GETTING MORE DONE AT WORK NOW COMES IN A CONVENIENT BOX

See how Adobe Acrobat X Reader is a step above anything you've experienced before, so you can be even more productive.

Upgrade now: http://www.official-adobe-acrobatx.com

Just how much faster can you work with Adobe Acrobat PDF Reader
software? Fast enough to stay on top of last-minute changes, connect
with key decision makers, and share updates with co-workers.

You'll discover how easy it is to reuse content by exporting PDF files
to Microsoft Word or Excel formats. And how quickly you can automate
multi-step tasks with new, guided Actions. No wonder PC Magazine
says, "There's a lot to like in Acrobat X PDF Reader." See for yourself at :

http://www.official-adobe-acrobatx.com

Copyright 2011 Adobe Systems Incorporated. All rights reserved.

Adobe Systems Incorporated
343 Preston Street
Ottawa, ON K1S 1N4
Canada
22-03-2011, 16:10 door Anoniem
Inderdaad vanmorgen al door play geïnformeerd. Ook aanwijzingen gehad over ww vragen enz.
Vind het vrij netjes behandeld, nog geen spam ontvangen met acro zaken.
22-03-2011, 17:27 door Anoniem
Dit was dus het mailtje dat je ontving :-) Altijd leuk !


Dear Customer,

Email Security Message

We are emailing all our customers to let you know that a company that handles part of our marketing communications has had a security breach. Unfortunately this has meant that some customer names and email addresses may have been compromised.

We take privacy and security very seriously and ensure all sensitive customer data is protected. Please be assured this issue has occurred outside of Play.com and no other personal customer information has been involved.

Please be assured we have taken every step to ensure this doesn’t happen again and accept our apologies for any inconvenience this may have caused some of you.

Customer Advice

Please do be vigilant with your email and personal information when using the internet. At Play.com we will never ask you for information such as passwords, bank account details or credit card numbers. If you receive anything suspicious in your email, please do not click on any links and forward the email on to privacy@play.com for us to investigate.

Thank you for continuing to shop at Play.com and we look forward to serving you in the future.

Play.com Customer Service Team

************************************************************************
Confidentiality: This e-mail and any files transmitted with it are
confidential and intended solely for the use of the individual or entity
to whom they are addressed. If you have received this e-mail in error
please notify the sender immediately and delete this message from your
computer without further action. Any dissemination, distribution or
copying of this message or any files transmitted with it by an
unauthorised recipient is strictly prohibited.
Viruses: This message has been swept for viruses but we cannot guarantee
that this e-mail or its attachments are virus free nor accept
responsibility for any virus inadvertently transmitted herewith.
************************************************************************
22-03-2011, 19:43 door Anoniem
Ik heb deze mail ook ontvangen. Maar ben niet geinformeerd door Play.com. Waarom moet ik dit via Security.nl vernemen???
22-03-2011, 22:19 door RichardJ
Hmm, geen mail gehad van Play. Het spambericht trouwens ook niet, wellicht stond ik op een andere lijst.
22-03-2011, 23:57 door Anoniem
Exacttarget is de ESP die hiermee in verband wordt gebracht.
23-03-2011, 08:26 door Anoniem
Probleem ligt bij Silverpop en niet bij play.com. Klantgegevens is een groot woord in een bericht als deze. Er zijn geen adres of creditcard gegevens gelekt, enkel email adressen.

Dear Customer,

As a follow up to the email we sent you last night, I would like to give you some further details. On Sunday the 20th of March some customers reported receiving a spam email to email addresses they only use for Play.com. We reacted immediately by informing all our customers of this potential security breach in order for them to take the necessary precautionary steps.

We believe this issue may be related to some irregular activity that was identified in December 2010 at our email service provider, Silverpop. Investigations at the time showed no evidence that any of our customer email addresses had been downloaded. We would like to assure all our customers that the only information communicated to our email service provider was email addresses. Play.com have taken all the necessary steps with Silverpop to ensure a security breach of this nature does not happen again.

We would also like to reassure our customers that all other personal information (i.e. credit cards, addresses, passwords, etc.) are kept in the very secure Play.com environment. Play.com has one of the most stringent internal standards of e-commerce security in the industry. This is audited and tested several times a year by leading internet security companies to ensure this high level of security is maintained. On behalf of Play.com, I would like to once again apologise to our customers for any inconvenience due to a potential increase in spam that may be caused by this issue .

Best regards,

John

John Perkins
CEO
Play.com
23-03-2011, 12:34 door Anoniem
logisch als je 'm niet gehad hebt, lees eens wat beter:

"Klanten van wie het e-mailadres uitlekte ontvingen een spambericht"

niet iedereen dus
Reageren

Deze posting is gelocked. Reageren is niet meer mogelijk.