Thread: Princess Credit Card Hacked

Beware. This has happened to Princess and also Disney.

Here is a copy of an email from Princess.




Dear Customer,

Re: Important information regarding a breach to the privacy of your email address.

Barclays Bank of Delaware is the bank behind your credit card referenced above. We have been informed by Epsilon, a marketing vendor we use to send emails to customers, that someone outside their company gained unauthorized access to files in their systems that included your email address. This has affected many of our credit cards under our various co-brands, including the brand on your card.

Epsilon has assured us that the only information that was obtained was your name and email address. Please be assured your account and any other confidential or personally identifiable information were not at risk.

It is possible you may receive spam email messages as a result which could potentially ask you for additional information about your account. Please note, Barclays will never ask you in an email to verify sensitive information such as your full account number, Username, Password or Social Security Number. Therefore, any email which does so should be treated suspiciously, even if it looks like it comes from Barclays. As a reminder, we urge you to be cautious when opening links or attachments from unknown third parties.

Barclays is one of many companies affected and so you may receive similar notifications from other companies.

Please visit the "Privacy and Security" section at our website www.BarclaycardUS.com for more information on protecting your personal information.

We sincerely regret this has taken place and for any inconvenience this may have caused you. Barclays is committed to protecting customers against the misuse of their personal information and we take security issues very seriously. We vigorously monitor the security of our systems and require all third party vendors to adhere to strict security and privacy policies and procedures.

Please know that a full investigation of this matter is under way by Epsilon and we will continue to work diligently to protect your personal information.

If you have any questions or need further assistance, please call our customer care center at the phone number on the back of your credit card.

Sincerely,

Larry Drexler
Chief Privacy Officer
Barclays Bank of Delaware

Karen Smithson
Information Security Officer
Barclays Bank of Delaware





Please Do Not Reply to this Email
This is a notification-only email that cannot accept incoming replies.

The Princess Rewards Visa card is issued by Barclays Bank Delaware, PO Box 8801, Wilmington, DE 19801, Member FDIC.

CMK-040211-PCL

Hanna, I received a similar e-mail today too from two companies we deal with. It was the same marketing vendor that you have listed in your e-mail.

I've begun to not answer any email concerning my credit cards or bank statements, legit or not. If they want to get hold of me they can send a letter & I'll respond likewise.

The Epsilon breach is widespread. For their part, Epsilon issued a press release saying the obvious: "The affected clients are approximately 2 percent of total clients and are a subset of clients for which Epsilon provides email services." (So why is everybody making such a big deal out it? So we made one little mistake. Jeez.)



Jac

Lots of well known companies aparently use Epsilon. I got a notice about it today from Walgreen's

i got the same message from my carnival and best buy cards but there was something on the news about a scam logging in to your account from the email or something

NO, I don't thik they can actually log in to your email account, but they CAN send you an eamil that looks just like it comes from one of the companies in question. DO NOT respond. It may be from the hackers who now want you to "verify" your account for them - meaning they want your information in order to mis-use it. DO NOT RESPOND

There's been stories on our local news about this, and I imagine on most stations. Don't respond to any email, as stated.

Target affected by Epsilon security breach - Marketplace.publicradio.org Target says it was told about the security breach by marketing firm Epsilon, but didn't say when. Two other Minnesota companies, Best Buy and US Bank also sent email notices to customers warning them not to respond to emails asking for personal information.

Were you affected by Epsilon data breach? - CNET News The list of Epsilon clients whose customer e-mail addresses were stolen is not complete, and is likely to grow. But so far Target, Kroger, TiVo, US Bank, JPMorgan Chase, Capital One, Citi, Home Shopping Network, Ameriprise Financial, LL Bean Visa Card ...

Epsilon hack triggers phishing fears - Livingston Daily.com "Epsilon has a huge way to go to earn back the trust of its clients," Lee said. Epsilon has alerted Citigroup, JPMorgan Chase, U.S. Bank, Barclays Bank, Best Buy, Hilton WorldWide, Marriott International, Disney Destinations and The College Board ...

Epsilon: Biggest Breach Ever? - Bank Info Security The list of banking institutions and retailers affected by the Epsilon e-mail breach continues to grow. So far, Citi, Chase, U.S. Bank, Capitol One, Barclays Bank of Delaware, Verizon, Walgreens, Visa, Kroger, Marriott International, Ritz-Carlton Rewards ...

ANALYSIS-Epsilon hacking shows new 'spear-phishing' risks - Reuters India "I think the Epsilon breach is a symptom of where we are in the security ... has become "the new norm" and the Reserve Bank of India (RBI) cannot afford to drop its guard, a deputy governor said on Tuesday.

Epsilon email hack: millions of customers' details stolen - The Guardian The names and email addresses of customers of Barclaycard US, Capital One and other large firms were taken in an attack on the marketing email provider Epsilon last week. British customers of Barclays Bank, which owns Barclaycard US, were not affected.

Hackers Take on Epsilon - KIMT US Bank is issuing a statement saying email addresses were the only information taken when hackers broke in to the marketing company, Epsilon Interactive. Capt. Mike Mckelvey, with the Mason City Police Department is cautioning folks to be cautious of ...

Banks, credit-card issuers warn of security breach on email addresses, names - Nashville Tennessean "U.S. Bank sends you an email and it looks legit and you cough up the information, and now you're in big trouble. It sure does sound like a big increase in fraud, just waiting to happen," Kocher said. The Epsilon breach follows another major hacking attack ...

Expect targeted attacks after massive Epsilon email breach, say experts - Australian Techworld Visa and U.S. Bank. Those companies and others have acknowledged the Epsilon hack, and warned their customers to be wary of spam, according to a list compiled by security blogger Brian Krebs. Experts today said that scammers will probably put the email ...

U.S. bank customers exposed in massive hack - The Vancouver Sun Capital One, which also runs a bank, and Walgreens, the largest U.S. drugstore, said the Epsilon hacker accessed its customer e-mail addresses, but no personally identifiable information. TiVo, a maker of digital video recorders, said the information that ...

It's quite widespread!