Best Buy: Hackers are trying to access online customer accounts

Some customers questioned the authenticity of email security alerts received from Best Buy

Some Best Buy customers had doubts about the authenticity of account security notifications sent by the company via email on Friday.

The email messages were signed by Lisa Smith, Best Buy's vice president of enterprise customer care, and informed recipients that their bestbuy.com passwords had been disabled because their accounts may have been accessed by hackers.

"We are currently investigating increased attempts by hackers around the world to access accounts on BestBuy.com and other online retailers' e-commerce sites," Smith said in the emails. "These hackers did not take username/password combinations from any Best Buy system; they appear to be using combinations taken elsewhere in an attempt to gain access to BestBuy.com accounts."

Affected customers were instructed to click on a link in order to reset their passwords and then validate the personal information stored in their accounts.

Because cybercriminals sometimes use similar instructions to trick users into visiting phishing websites, some Best Buy customers questioned the authenticity of the company's email alerts.

"The links do not begin with http://www.bestbuy.com, nor are the links SSL encrypted, so I am wondering if it is real or not," a user said on the Best Buy community forums. "Is this real or a scam by the hackers?" another customer asked on Facebook.

A Best Buy employee named Marti confirmed that the email messages are authentic via the company's official Facebook account.

"While this situation is not a result of any breach of Best Buy systems, we are continuously working to take care of our customers, and to request that they take the time now to protect their online information (such as updating their BestBuy.com account passwords, not using the same passwords across different accounts, etc.)," Marti said.

Security experts have long warned users against the use of a single password across multiple websites or online services, because it significantly increases the impact of a potential breach of their log-in credentials.

There are free password management applications that can help users create and maintain unique passwords for each of their online accounts. Most of them integrate well with browsers and have auto-complete functionality.

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.
Keep up with the latest tech news, reviews and previews by subscribing to the Good Gear Guide newsletter.
Lucian Constantin

Lucian Constantin

IDG News Service
Show Comments

Most Popular Reviews

Latest Articles

Resources

PCW Evaluation Team

Tom Pope

Dynabook Portégé X30L-G

Ultimately this laptop has achieved everything I would hope for in a laptop for work, while fitting that into a form factor and weight that is remarkable.

Tom Sellers

MSI P65

This smart laptop was enjoyable to use and great to work on – creating content was super simple.

Lolita Wang

MSI GT76

It really doesn’t get more “gaming laptop” than this.

Jack Jeffries

MSI GS75

As the Maserati or BMW of laptops, it would fit perfectly in the hands of a professional needing firepower under the hood, sophistication and class on the surface, and gaming prowess (sports mode if you will) in between.

Taylor Carr

MSI PS63

The MSI PS63 is an amazing laptop and I would definitely consider buying one in the future.

Christopher Low

Brother RJ-4230B

This small mobile printer is exactly what I need for invoicing and other jobs such as sending fellow tradesman details or step-by-step instructions that I can easily print off from my phone or the Web.

Featured Content

Don’t have an account? Sign up here

Don't have an account? Sign up now

Forgot password?