Barnes & Noble Cyberattack Exposed Customers’ Personal Info

If you're a Barnes & Noble customer, you may have recently received an email from them notifying you of a cyberattack. Here's more on the story reported on by CNN Business and Western Mass News.

A day after Barnes & Noble solved its Nook outage, the bookstore revealed a far more serious problem: A massive cybersecurity attack breached the company's data, exposing information about customers, including email addresses and other personal information.

On Monday, Barnes & Noble sent customers an email to notify them about the cyberattack. The company made it clear that customers' financial information had not been exposed.

Their transaction history, however, was potentially exposed. The company said, "transaction history, meaning purchase information related to the books and other products that you have bought from us" were retained in the systems that were impacted by the cybersecurity attack.

Customer's email addresses were also potentially leaked in the cybersecurity attack, according to the company.

Barnes & Noble stated in the email they sent out, "It is possible that your email address was exposed and, as a result, you may receive unsolicited emails."

While the bookstore chain doesn't know if other personal information was exposed during the attack, Barnes & Noble acknowledged that customers' billing and shipping addresses as well as their phone numbers stored in the systems were included in the attack.

Although not worth much to hackers on their own, personally identifying data like addresses, phone numbers, names and email addresses are valuable on the black market. It can be combined with other information, including credit card information and Social Security numbers, to create full profiles of people. Hackers can use that information to steal people's identities and money.

Thanks to CNN Business and Western Mass News for the info.