Massive new data breach: was your email part of the Epsilon data breach?


Written by:

Recently, an email marketing company you’ve never heard of called Epsilon had a data breach where someone (presumably a hacker but they’re not sure) got all the names and emails in their database.  Why is this a big deal?

Well, Epsilon just happens to send emails on behalf of lots of companies you have heard of:

Do the companies above have any information that might be important to you?  About your finances?  Health?  School records?  Of course they do.  But do you have to worry?  The hackers only got the names and email address, right?  What can be done with just knowing your name and email address?  Well…

What we’ve learned from other data breaches where hackers got into company databases is that you re-use your passwords a lot:

When our friends at RockYou had their databreach, the hackers got the passwords as well as emails on 32 million users.  Here were the most common passwords:

1. 123456
2. 12345
3. 123456789
4. Password
5. iloveyou
6. princess
7. rockyou
8. 1234567
9. 12345678
10. abc123
11. Nicole
12. Daniel
13. babygirl
14. monkey
15. Jessica
16. Lovely
17. michael
18. Ashley
19. 654321
20. Qwerty

But even if your password isn’t on the list, the online privacy and identity theft problem here is DATA MINING.  Hackers are good at cross-referencing data.  They can take 50 million names and emails from Epsilon, compare that with 32 million emails and passwords from Rockyou (and other breaches and fake phishing sites), and get hundreds of thousands of online accounts with which they can commit fraud. It’s basically child’s play.

This is why everyone needs to take care not t0 get too angry at Epsilon, but to get even with hackers and get in control of your online privacy.  Use tools like Abine’s DoNotTrackMe to create Masked Emails. Try it:  it’s free, and you’ll be glad you did when the next big data breach comes around.

One Reply to “Massive new data breach: was your email part of the Epsilon data breach?”

  1. Winston Goldstein says:

    You can ad Verizon to the list, according to the email they sent me.

Leave a Reply