This weekend Zappos announced they were hacked and lost a DB that had your name, e-mail address, billing and shipping addresses, phone number, the last four digits of your credit card number and/or your cryptographically scrambled password. For some reason it was also important to let people know their server was in Kentucky?
Ok? So what does this mean to someone with a Zappos account?
It shouldn’t mean anything unless you reuse your online passwords. Then you NEED to change your passwords on all sites that share your Zappos password.
It is really important to stop reusing passwords on the internet. It’s the fastest way to go from a small incident like this to someone having access to your email, banking, corporate and social media accounts.
Here is how I stop password reuse. Its simple, cheap and effective.