Best Buy says some customer accounts hacked

[security curmudgeon <jericho () attrition org>]

http://www.technolog.msnbc.msn.com/technology/technolog/best-buy-says-some-customer-accounts-hacked-867048

Best Buy says some customer accounts hacked



Best Buy says some customers' email accounts may have been hacked. The 
retail giant is notifying those customers via email, telling them their 
current passwords have been disabled and asking them to reset their 
passwords.

The email, which went out Friday, says in part:

     We are currently investigating increased attempts by hackers around 
the world to access accounts on BestBuy.com and other online retailers. 
e-commerce sites. These hackers did not take username/password 
combinations from any Best Buy system; they appear to be using 
combinations taken elsewhere in an attempt to gain access to BestBuy.com 
accounts.

[..]
_______________________________________________
Dataloss Mailing List (dataloss () datalossdb org)
Archived at http://seclists.org/dataloss/
Unsubscribe at http://datalossdb.org/mailing_list

Supporters:

Risk Based Security (http://www.riskbasedsecurity.com/)
Risk Based Security equips organizations with security intelligence, risk
management services and on-demand security solutions to establish
customized risk-based programs to address information security and
compliance challenges. 

Tenable Network Security (http://www.tenable.com/)
Tenable Network Security provides a suite of solutions which unify real-time
vulnerability, event and compliance monitoring into a single, role-based, interface
for administrators, auditors and risk managers to evaluate, communicate and
report needed information for effective decision making and systems management.