TiVo users had a rude awakening this morning, finding out the email address they’d given to TiVo as part of their account registration had been compromised.
According to SecurityWeek, Epsilon is currently disclosing even more companies whose email marketing lists had been compromised. Noticing the problem first with grocery retailer Kroger, Epsilon continues releasing company names that were affected by the breach. Here’s the list gathered so far:
- US Bank
- JPMorgan Chase
- Capital One
- McKinsey & Company
- Ritz-Carlton Rewards
- Marriott Rewards
- New York & Company
- The College Board (added 4/3 @8:20am)
- Home Shopping Network (HSN)(added 4/3 @10:22am)
- LL Bean (added 4/3 @1:20pm)
- Disney Destinations (added 4/3 @1:20pm)
- Barclays Bank of Delaware (added 4/3 @1:20pm)
TiVo tried to sooth victims, saying the release of personal data “was limited to first name and/or email addresses only.” Here’s the email we received from TiVo this morning:
Now that they have a list of confirmed email addresses, those spammers and other miscreants will have much better success at targeting their victims.
Other organizations such as Citi, Marriott Rewards and Ritz-Carlton Rewards also warned their users, with lots more warnings probably on the way.