11 {{ upvoteCount | shortNum }}
11 {{ upvoteCount | shortNum }}

iContact lists compromised

by Paul Myers
9 replies
In December, Aweber was hacked and email addresses stolen. At the time, I pointed out that this was a threat that could affect any provider, while some folks suggested that iContact was preferable.

iContact lists have since been compromised. The stolen addresses (identified by users of tagged addresses) are getting pill spams, too. It is not yet known publicly what vector was used in the theft. Speculation includes hacking and recently downsized employees, but those are both just that... speculation.

You can read the official statement from iContact here:

iContact - Email Marketing Simplified - The iContact Blog

I don't like to see this happen to any company. I'm pointing it out to further illustrate my point that ANY provider can be compromised.


Paul
#compromised #icontact #lists
  • Profile picture of the author Rich Struck
    This is fantastic. Even better is that I'm learning about it on a messageboard instead of directly from iContact. What a joke. Thanks for posting this.
    Signature

    {{ DiscussionBoard.errors[1699301].message }}
  • Profile picture of the author Dennis Gaskill
    Get Response better hunker down, they're probably the next target.
    Signature

    Just when you think you've got it all figured out, someone changes the rules.

    {{ DiscussionBoard.errors[1699331].message }}
    • Profile picture of the author Paul Myers
      Dennis,
      Get Response better hunker down, they're probably the next target.
      Hopefully not. It may turn out that this breach was a different type and completely unconnected.

      As far as that goes, though, they're all targets, all the time. Any service provider with an extensive database probably fends off more attacks like this in a week than most of us will see in a lifetime.

      It's not going to get easier, either. I recently read a description of a process for turning an iPhone or Droid into a nightmare device for hacking, just as one example.


      Paul
      Signature
      .
      Stop by Paul's Pub - my little hangout on Facebook.

      {{ DiscussionBoard.errors[1699365].message }}
      • Profile picture of the author Dennis Gaskill
        Originally Posted by Paul Myers View Post

        Dennis,Hopefully not. It may turn out that this breach was a different type and completely unconnected.

        As far as that goes, though, they're all targets, all the time. Any service provider with an extensive database probably fends off more attacks like this in a week than most of us will see in a lifetime.

        It's not going to get easier, either. I recently read a description of a process for turning an iPhone or Droid into a nightmare device for hacking, just as one example.


        Paul
        You're full of good news tonight, Paul!

        If NASA, the Pentagon, the White House and other top security sites can be hacked, they all can. With so many "professional hackers" coming from countries not friendly to the US, there is no easy solution.
        Signature

        Just when you think you've got it all figured out, someone changes the rules.

        {{ DiscussionBoard.errors[1699393].message }}
        • Profile picture of the author Paul Myers
          Dennis,
          You're full of good news tonight, Paul!
          This isn't really anything new. I think a lot of people here would freak if they knew how much crap they can get on their machines from Facebook and other social networking sites. Or how many external storage devices (HDs, USB thumb drives, etc) come out of the factory-sealed package with malware on them. Or how many of the freebies they pick up have exploits and back doors built into them. Or, or, or...


          Paul
          Signature
          .
          Stop by Paul's Pub - my little hangout on Facebook.

          {{ DiscussionBoard.errors[1699468].message }}
          • Profile picture of the author AP
            [DELETED]
            {{ DiscussionBoard.errors[1699477].message }}
            • Profile picture of the author Paul Myers
              AP,
              Who's next Infusionsoft?
              Who knows?

              Now that you mention it, it may have been Infusionsoft that people touted as being "more secure." Doesn't really matter much, as they really are all tough to crack, but still vulnerable in some way.


              Paul
              Signature
              .
              Stop by Paul's Pub - my little hangout on Facebook.

              {{ DiscussionBoard.errors[1699495].message }}
  • Profile picture of the author Ron Douglas
    Thanks for info. Not much we can do about it though.
    Signature
    {{ DiscussionBoard.errors[1702482].message }}
    • Profile picture of the author Paul Myers
      Ron,
      Thanks for info. Not much we can do about it though.
      True. But it may help people to know how to explain what happened when they get questions from subscribers.


      Paul
      Signature
      .
      Stop by Paul's Pub - my little hangout on Facebook.

      {{ DiscussionBoard.errors[1702661].message }}
      • Profile picture of the author Zeus66
        Originally Posted by Paul Myers View Post

        Ron,True. But it may help people to know how to explain what happened when they get questions from subscribers.


        Paul
        Yep, that was my first thought. Thanks for letting us know, Paul. I'm actually surprised this hasn't been a much more widespread problem long before now. Eh, maybe it was and they just kept it under tighter lids before the Aweber debacle. Cyberwar, anyone?
        {{ DiscussionBoard.errors[1702681].message }}

Trending Topics