Wal-Mart owned movie rental/purchase site has become the latest victim of data breach. But unlike some of the previous attacks, Vudu data breach didn’t involve any remote hacking attempts.
Some lawbreakers broke into Vudu’s office and stole a number of items including hard drives. Unfortunately for its users, the same hard drives contained usernames, passwords and the last four digits of credit cards of some customers.
Vudu has sent out emails to all affected users urging them to reset their passwords. They have also released a press release which is provided below.
On March 24, 2013, there was a break in at the VUDU office and a number of items were stolen, including hard drives. These hard drives contained customer data including names, email addresses, mailing addresses, account activity, dates of birth, and encrypted passwords, but NO full credit card numbers. We are proactively retiring and resetting all passwords and notifying all customers. As another level of protection for customers we are also providing AllClear ID identity protection services. We reported the theft to law enforcement immediately, and are cooperating fully with their investigation.
Luckily, Vudu doesn’t store full credit card numbers of its users. Hence the damage was greatly reduced. So, if you are a Vudu customer, we strongly recommend changing your password as soon as possible. Also, if you have used the same password for some other service(which is actually a very bad idea), please change those passwords as well.