Security breach play.com
 

Hi just recieved an email from play.com to say their systems have been compromised and certain customers emails and names may have slipped out.

Dear Customer.

Email Security Message

We are emailing all our customers to let you know that a company that handles part of our marketing communications has had a security breach. Unfortunately this has meant that some customer names and email addresses may have been compromised.

We take privacy and security very seriously and ensure all sensitive customer data is protected. Please be assured this issue has occurred outside of Play.com and no other personal customer information has been involved.

Please be assured we have taken every step to ensure this doesn’t happen again and accept our apologies for any inconvenience this may have caused some of you.

Customer Advice

Please do be vigilant with your email and personal information when using the internet. At Play.com we will never ask you for information such as passwords, bank account details or credit card numbers. If you receive anything suspicious in your email, please do not click on any links and forward the email on to privacy@play.com for us to investigate.

Thank you for continuing to shop at Play.com and we look forward to serving you in the future.

Play.com Customer Service Team


OH dear:(. Just posting in case anyone has not seen this.

Re: Security breach play.com
 

Just as well I use a unique email address for play.com Will be able to see where any Spam emails come from

Re: Security breach play.com
 

Becareful this could be a scam and not from play.com

This is the header I get

is

Return-Path: <v-ejcege_fiodecco_kghklao_kghklao_a@bounce.newslette rs.play.com>

a valid play.com address?

Re: Security breach play.com
 

Not sure how it's a scam. There is nothing in it asking for information, and the only e-mail address in it is a valid play.com one

It has also gone to the correct email address I used for play.com as well

Re: Security breach play.com
 

True but if you get any emails from "play.com" asking you to click on a link, DON'T. Goto the play.com site via you own explorer.

Re: Security breach play.com
 

Looks like it, it goes to an account on the play.com domain

Re: Security breach play.com
 

Had no plans to lol

Re: Security breach play.com
 

It's a genuine email..

Moved to the Security forum

Re: Security breach play.com
 

More info

http://www.theinquirer.net/inquirer/...ecurity-breach

Re: Security breach play.com
 

this information is often leaked/sold by data collecting companies. Most of us in one way or another are on such a list somewhere. This info can net those selling it quite a bit of money.

There is always a option to tick when you register anywhere 3rd party blar blar some is a tick to opt in and other ( the crafty ones) are tick to opt out which means if you aint read it properly and assume its a tick giving permission your data is on a list

Sky for example is an opt out company you actually have to deny permission or by default your info is shared

Re: Security breach play.com
 

More info here at BBC News

Re: Security breach play.com
 

Interestingly gmail let this through without flagging as spam.
related to the play email leaks?

[img]Download Failed (1)[/img]

Re: Security breach play.com
 

Probably because the spam email was sent over a compromised network that has a valid SPF record. Google will give a lot of positive weight to a spam or phishing email if it has SPF:PASS in the header.

Re: Security breach play.com
 

Another email from PLAY.COM

Re: Security breach play.com
 

I got the second email, and OK I was wrong, but better safe than sorry.

---------- Post added at 22:31 ---------- Previous post was at 22:16 ----------

If you get any suspicious emails that appear to come from Play.com

I tend to only get 3 emails from them IIRC

1. General promo's
2. Order placed/received
3. Order dispatched.

And I spend a LOT of cash there, and will continue to do so.

Re: Security breach play.com
 

So are they genuine or fake?

Re: Security breach play.com
 

They're genuine but I think that PLAY.COM got the wrong end of the stick and sent out the initial post without finding out exactly what had happened

Re: Security breach play.com
 

i got one of these to didnt know wheather it was true or not.

Re: Security breach play.com
 

Oh Really, that could sure make ordering something an interesting experience then :erm:

Should really state that their customer service personnel will never ask for things like passwords, bank details, CC numbers.

Their site however is most definitely going to ask for passwords/credit card numbers, they seem to have this strange expectation when a customer orders something that the customer actually pays for it... Can't think why that is :angel:

I admit it's rather pedantic of me, particularly from someone who has terrible spelling and grammatical accuracy but for some reason I find things like that rather irritating