Here is a list of companies that have acknowledged losing customer contact data and email addresses as a result of the Epsilon breach.
I have received a notice from a 6 companies on this list, and expect more to come. (Marriott, Target and RedRoof were the latest)
- Abe Books
- American Express
- Ameriprise Financial
- Barclays Bank of Delaware
- Benefit Cosmetics
- BestBuy
- Brookstone
- Capital One
- Citibank
- City Market
- The College Board
- Dillons
- Disney Vacations
- Food 4 Less
- Fred Meyer
- Fry’s
- Hilton Honors
- The Home Shopping Network
- Jay C
- JP Morgan Chase
- King Soopers
- Kroger
- LL Bean
- Marriott Rewards
- McKinsey Quarterly
- New York & Co.
- QFC
- Ralphs
- Ritz Carlton
- Robert Half
- Smith Brands
- Target
- TiVo
- US Bank
- Visa
- Walgreens
Here is my latest from Target
On Mon, 4/4/11, Target.com <TargetNews@target.bfi0.com> wrote:
From: Target.com <TargetNews@target.bfi0.com>
Subject: Important message from Target
To: ubersecurityguru@gmail.com
Date: Monday, April 4, 2011, 5:56 PM
To our valued guests,
Target’s email service provider, Epsilon, recently informed us that their data system was exposed to unauthorized entry. As a result, your email address may have been accessed by an unauthorized party. Epsilon took immediate action to close the vulnerability and notified law enforcement.
While no personally identifiable information, such as names and credit card information, was involved, we felt it was important to let you know that your email may have been compromised. Target would never ask for personal or financial information through email.
Consider these tips to help protect your personal information online:
• Don’t provide sensitive information through email. Regular email is not a secure method to transmit personal information.
• Don’t provide sensitive information outside of a secure website. Legitimate companies will not attempt to collect personal information outside a secure website. If you are concerned, contact the organization represented in the email.
• Don’t open emails from senders you don’t know.
We sincerely regret that this incident occurred. Target takes information protection very seriously and will continue to work to ensure that all appropriate measures are taken to protect personal information. Please contact Guest.Relations@target.com should you have any additional questions.
Sincerely,
Bonnie Gross
Vice President, Marketing and Guest Engagement
From: Red Roof RediCard [mailto:redicard@redroofinn.bfi0.com]
Sent: Monday, April 04, 2011 7:45 PM
To: ubersecurityguru@gmail.com
Subject: Important information from Red Roof
Dear Guest,
We have been informed by one of our email service providers, Epsilon, that your email address was exposed by an unauthorized entry into that provider’s computer system. We use our email service providers to help us manage the large number of email communications with our guests. Our email service providers send emails on our behalf to guests who have chosen to receive email communications from us.
How will this affect you? First, we want to assure you that your name and email address were the only information that was compromised. As a result of this incident, it is possible that you may receive spam email messages, emails that contain links containing computer viruses or other types of computer malware, or emails that seek to deceive you into providing personal or credit card information. As a result, you should be extremely cautious before opening links or attachments from unknown third parties or providing a credit card number or other sensitive information in response to any email. Also know that Red Roof will not send you e-mails asking for your credit card number, social security number or other personally identifiable information. So if you are ever asked for this information, you can be confident it is not from Red Roof.
We appreciate your business and loyalty to Red Roof and take your privacy very seriously. We will continue to work diligently to protect your personal information.
If you have any questions regarding this incident, please contact us at 877.733.7663 between the hours of 9am and 5pm Eastern.
Sincerely,
Brenda Eddy Manager, Loyalty Marketing
Red Roof Inns, Inc.
You can view our privacy policy at redroof.com/About-Us/Privacy-Policy.aspx.
© 2011 Red Roof Inns, Inc. All rights reserved.
Marriott
April 4, 2011
Dear Marriott Customer,
We were recently notified by Epsilon, a marketing vendor used by Marriott International, Inc. to manage customer emails, that an unauthorized third party gained access to a number of Epsilon’s accounts including Marriott’s email list.
In all likelihood, this will not impact you. However, we recommend that you continue to be on the alert for spam emails requesting personal or sensitive information. Please understand and be assured that Marriott does not send emails requesting customers to verify personal information.
We take your privacy very seriously. Marriott has a long-standing commitment to protecting the privacy of the personal information that our guests entrust to us. We regret this has taken place and apologize for any inconvenience.
Please visit our FAQ to learn more.
Sincerely,
Marriott International, Inc.
Terms Of Use :: Privacy Policy
This email was sent to you by Marriott International, Inc. based on a past or present relationship with Marriott.
You may receive customer service notifications even if you have unsubscribed from Marriott promotional email.
Marriott- Internet Customer Care
1818 North 90 Street
Omaha, NE 68114-1315 USA
©2011 Marriott International