Zales.com has been leaking customer data. Someone who knows what they doing (i.e., a clever 6th grader) could access customer names, addresses, emails and last four digits of credit cards. This is the perfect example of how someone else’s insecurity affects you.

This isn’t what real hackers look like — but it is a nice stock image.

How often have you only had to enter in the last four of a credit card to place an order? Although the last four of a credit card were never meant to allow for identity verification ecommerce sites do just that. Zales.com just gave that away.

How do you reset passwords or convince someone you are you over the phone? Name, address, email address and last four of a credit card will usually do it. Zales.com just gave that away.

How do you break into someone else’s account without hacking them directly? If you re-use passwords (and you do!) then you just automate hitting hundreds of websites with the username and password you just stole from a site like Zales.com.* This happens every day.

When your information is available for hackers they can get into your accounts, your email and your network without you doing a thing.

If you want to see what of yours is for sale on the Dark Web today send us a request here. We will prepare a confidential report that shows you what the bad guys already have access to.

Remember, it isn’t your fault that someone else was hacked. It is your responsibility to defend against it.

*It isn’t clear that Zales.com was leaking passwords, however, Adobe, LinkedIn, Canva.com and many, many others make up at least 11,599,230,942 of your accounts and passwords hacked from third parties.