• Chicago Tribune, Tuesday, January 17, 2012 11 AM

Online retailer Zappos.com and its discount affiliate, 6pm.com, disclosed Sunday a data breach that compromised customer account information such as billing addresses and the last four digits of credit card numbers.

The security problem did not affect "critical credit card and other payment data," Zappos Chief Executive Tony Hsieh wrote in an employee e-mail. Hsieh explained that the company was "the victim of a cyber attack by a criminal who gained access to parts of our internal network and systems through one of our servers in Kentucky." The retailer has more than 24 million customer accounts in its database, according to Hsieh’s memo, and the company is notifying customers of the data breach via e-mail. It has expired shoppers’ passwords so they must create new ones to access their accounts.

Read the whole story at Chicago Tribune »