The Epsilon Example: When Microsoft Shops and SPAM Intersect

Dr. Roy Schestowitz

2011-04-13 21:55:31 UTC
Modified: 2011-04-13 21:55:31 UTC

Summary: Assorted security news about the "biggest name and email address heist in US history" and beyond

A few days ago we wrote about the Epsilon fiasco, which is said to have affected Marks and Spencer customers, probably owing to the Windows machines getting cracked (as they so often do). What we didn't know at the time is that this was the "biggest name and email address heist in US history". To quote The Inquirer:

BIG US BANKS JPMorgan Chase, Citigroup and US Bank are just three of the companies affected by a massive data breach at online marketing firm Epsilon.

These are just a few of the companies that do business with Epsilon, which said in a statement that its clients "were exposed by an unauthorised entry into Epsilon's email system".

Epsilon is a firm that sends billions of emails ads each year to people who register their interest at its customers' websites or give their email addresses when shopping. At the moment it is unclear how many people have been affected, but Reuters claimed "it could be one of the biggest such data breaches in US history".

According to another article:

What’s being described as a “massive” security breach at email marketing firm Epsilon has compromised the customer names and emails of some of the largest companies in the US, including seven of Fortune’s top 10 institutions, reports SecurityWeek.

Epsilon reportedly sends out 40 billion emails each year for more than 2,500 clients. SecurityWeek reports that clients of Epsilon affected by the infiltration include: TiVo, US Bank, JPMorgan Chase, Verizon, Capital One, Marriott Rewards, Ritz-Carlton Rewards, Citi, Brookstone, McKinsey & Co., New York & Co, Kroger and Walgreens.

It says that "Epsilon reportedly sends out 40 billion emails each year for more than 2,500 clients." Well, earlier today a marketing (spamming) agency called 2ndimpression sent on behalf of Thornley Groves a bunch of marketing junk to clients, myself included. It did this (sent unwanted mail) without permission from the recipients, requiring non-existent usernames to unsubscribe from this endless mess. These firms deserve no sympathy. Some of them are borderline criminal, but they probably know the law well enough to manoeuvre around prosecution. To them, it's risk analysis and reward. Microsoft Florian uses similar tactics to shower journalists with quotes to embed in articles.

In other news, universities keep getting cracked and Windows users receive malware from cracked sites. "The fake software is called the Windows Stability Center," says the MSBBC, but they do not say that it's only a problem for Windows users, they just say "PC" or "computer". ⬆

Brian Kernighan, "Only Third to Dennis Richie and Ken Thompson" (UNIX), Agreed With Someone Who Said Rust Was Just Hype, Should Not Replace C: 17 hours ago
Reminder: Microsoft's "Secure Boot" Certificate for "Linux" Will be Expired in One Week: Many PCs won't manage to 'rotate' to another certificate
BASIC Predates Microsoft by Over a Decade, Microsoft-Controlled Sites Like The Register MS Don't Want You to Know This: The state of the media is really bad when it relies a lot on oligarchs' money and is appointing editors who are working for oligarchs
Analogies for "Memory Safety" in Rust: Don't worry, it's Rust! It can do anything!
"Many of the Red Hat Employees Are Still Looking for Work": Shame on IBM's CEO
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Thursday, September 04, 2025: IRC logs for Thursday, September 04, 2025
Microsoft Started With Code Literally From The Trash, Nothing Has Improved Since: The reality is, there are systems and code that are reliable. But they're not Microsoft's.
Hypothesis That New McKinsey/Microsoft Executive Inside Red Hat Will Outsource Research and Development Operations to India (Like They Do in IBM): IBM is floundering
Slopwatch: Scams, Fake Articles About "Linux", Plagiarism, and Worse: Perhaps some time soon the LLMs or the "Big LLMs" will run out of money (to borrow) and go offline, leaving those slopfarms in a tough place
Gemini Links 04/09/2025: Means of Production and Rusting Out: Links for the day
Links 04/09/2025: Science, Hardware, and Eyes on China: Links for the day
Gemini Links 04/09/2025: Digital Minimalism and Social Control Media: Links for the day
IBM's GNU/Linux Divestment, Based on Hard But Anecdotal Evidence (IBM Fails to Recognise How Much Money It Made and Can Still Make From "Linux"): Love us or hate us, a lot of what we've been saying about Red Hat under IBM turns out to be rather accurate
Links 04/09/2025: Massive Microsoft Staff Cuts (Barely Reported), "Strange Conspiracy Theory Is Reportedly Spreading Inside OpenAI": Links for the day
Activists Can Win, But Keep an Eye on the Ball and on the Trophy: GitHub is dying, it was a loss-making trap, not free hosting
Gemini Links 04/09/2025: Katrina Remembered, Distracted Driving, and Virtual Economics: Links for the day
At This Point It's No Longer Matthew Garrett But People Who Fund Matthew Garrett (or Companies That Fund His SLAPPs Against My Wife and I): The only thing worse than misogynists are misogynists who fail to respect other people's right to go on holiday
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Wednesday, September 03, 2025: IRC logs for Wednesday, September 03, 2025
The UEFI 9/11 - Part VI - This Serious Harm Was Planned for Over a Decade, Not an Accident or Merely Some Misfortune: The term "Serious Harm" is legally meaningful here
GNOME Unfit for Diversity and Inclusion: GNOME's leadership is using "bad words"
Brodie Robertson Addressing the Recently-Discovered Comments: Most people probably knew nothing about this until he wrote a response
Red Hat QA Team "Had Shrunk by Half Over the Past Year." (After IBM Divestment): If Red Hat's workforce is being moved to the East, then RHEL can become a national security problem
Slopwatch: "Open Source" and "Linux" News Faked, Made by Bots and Entered Into Google News: Spam combined with slop about "Linux" has entered Google News
Links 03/09/2025: Microsoft Causes Mass Layoffs Outside Microsoft Also, "Google Can Keep Paying for Firefox Search Deal": Links for the day
Gemini Links 03/09/2025: calendar.txt, Alhena 5.3.1, and ROOPHLOCH: Links for the day
The Theory That the Man From McKinsey, Whom Red Hat Took From Microsoft a Month Ago as Executive, Wants 'Efficiency' (Lower Salaries): So far... no "official" word
When Your Site's Articles Are Being 'Cheapened' by Slop as Feature Images: Dr. Farnell should become an advisor to The Register MS
Certificate Authority Let's Encrypt Drops to Only Half a Dozen Capsules and 0.2% of the Whole in Geminispace, Self-Signed is the Way to Go: It used to have hundreds, according to Lupa
Doing to Red Hat What They Already Did (and Still Do) to IBM: there seems to be a drive to hire cheaper staff, and it may be led by somebody Red Hat hired from Microsoft
Links 03/09/2025: Salesforce's Latest Mass Layoffs, 93% in Large Poll at The Register MS Say UK Government Should Dump Microsoft: Links for the day
Preparations for Our 19th Anniversary Have Already Begun: When we get back we'll probably sort out some balloons and venue for the next party
Pleased After 2 Years With team.blue: Moving from a Content Management System (CMS, dynamic) to a Static Site Generator (SSG) was a wise decision that made life so much easier
The Free Software Foundation (FSF) is Being Attacked by Organisations Jealous of Its Principled Stance and Longevity: Nobody is perfect, but imperfection does not instantaneously imply sinister intent
If You Reject the Google Verdict in the US, Then You Should Also Reject the "Modern" Web (Do Something About It): Gemini Protocol is still open; it cannot be hijacked or subverted because it's frozen by design and by intention
Open Source Initiative IRS Filing: Almost All the Money is Corporate, Stefano Maffuli (Executive Director) Takes About a Quarter of That Money for Openwashing of "AI" Ponzi Scheme: OSI is currently little but a PR/marketing agency of Microsoft
Many People Are "Leaving" Red Hat, Even High-Level Managers: Something is definitely going on at Red Hat
Techrights Has Been Subjected to Calls of Violence (and Death Threats), It Never Condoned Violence: I have no sympathy for people who call violence "free speech" and then get in trouble
Condoning Violent Behaviour and "Free Speech": perhaps Microsoft Lunduke lost touch with what constitutes violence
Takeaway From the Google Verdict: GAFAM Has Too Much Control (Even Over the US Government and Courts With Government Appointees): Many people feel disappointed but hardly surprised by the verdict
The Free Software Foundation (FSF) Turns 40 in One Month: As noted a few days ago, several times in fact, many people now recognise the importance of the FSF's mission, even if most people don't know what the FSF is
Many Microsoft "Assets" Are Fabricated Baloney (to Game the Numbers): At times it seems like what we deal with are many weak patents (on algorithms), valuations or speculations based on hype ("hey hi"), and stocks held by Microsoft and its own staff
"Voluntary" Layoffs at Microsoft (to Game the Numbers, Sugar-Coating a Crisis): "Employees interested have until the end of October to volunteer."
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Tuesday, September 02, 2025: IRC logs for Tuesday, September 02, 2025

The Epsilon Example: When Microsoft Shops and SPAM Intersect

Recent Techrights' Posts