Epsilon lets its customers fix their security failure
Last week a serious failure in storing names and Email occurred due to a security flaw by a company name Epsilon. This may be the largest failure in protecting names and Email in my lifetime. Epsilon is trying to downplay this failure by claiming it only lost 2% of its database
Even though you’ve never heard of Epsilon by now many of you have received letters from companies who use Epsilon to handle their mass Emailing. What we know to be compromised so far is only your name and Email but hackers will also know which companies you do business with.
So you should expect the following.
1) More Spam
2) More Phishing:
You should expect to see targeted Emails from companies affected by this failure. The Email will appear to come from your bank and they’ll know your name. As I often recommend, DO NOT CLICK on links found in an Email. Go directly to the company web site and see if there is a problem.
Security researcher Brian Krebs has a partial list of companies affected which he has been updating daily. Click here and scroll down.
So far, Epsilon has been quiet except for the small note above. They’re letting their customers handle the brunt of this public relations nightmare.
So far I’ve received two Emails but I expect more.
So far I have not heard from TiVo, QFC or Marriot Rewards who have my Email and are all listed as affected clients.