Zappos Information Security Breach – It Could Happen to You

By

It may be a new year, but we’re already seeing plenty of the old stuff happening.  You may have been one of the 24 million people who’ve received an email from Zappos.com in the last week, telling you that your personal data on its servers had been hacked, and urging you to change your password. While incidents involving large companies like Zappos may be the most widely reported, smaller companies are not immune. Any company that has valuable intellectual property or trade secrets is likely being targeted continually.  Targeting is very quickly evolving to “mining”, meaning that these same hackers will apply their methods to penetrate any and all networks that may not be fully protected or up to date. As we’ve previously mentioned in this blog, there’s a constant cat-and-mouse game being played out.

The mice have a full range of weapons at their disposal, such as Distributed Denial of Service (DDoS) attacks, which cripple websites by overwhelming them with excessive external communication requests. The bad guys are also using malware more than ever, to attack banks and other financial institutions, with attacks spreading across multiple sectors and enterprises. Size no longer matters:  if you have a network with online access, somebody is trying to access your network to do your company harm.

Which is why at Windstream, we’ve developed a full set of managed security services.  From a managed firewall to  integrated intrusion detection and prevention , our experts monitor our clients’ networks every hour of every day.  And when we see something, we take immediate action to ensure that your network and the information stored on it remain secure.

Meanwhile, you may want to check out Mathew Schwartz’s article in InformationWeek, outlining eight lessons you should have learned from the Zappos data breach:  among them, planning in advance may help mitigate the negative effects, and issue a clear, timely warning to your customers whose data may have been accessed, clearly stating what they should do to minimize their exposure.  And if you think that you’re not a target for someone out there, think again.  Schwartz reports that a hacker attack against your network is “now inevitable.”  Between malware and DDoS and botnets, somebody wants to bring your network down. 

We’re ready to defend it.  Are you?