Has Nespresso Had a Data Leak?

No on 01/01/2021 - 09:27
Last edited 01/01/2021 - 11:24 by 1 other user

Hey all,

I did a google searched but couldn't come up with anything.

Today on the email address I have only given to nespresso (I use a catch all domain) I received the following email:

Subject: RE: Note: Missing information for delivery to: <my last name>

Dear <my first name>,
The team at Parcel Delivery Centre are holding on to a package with your name on it. We have tried to contact you before without success but now our centre is filling up and > old packages will have to be sent back. Therefore, we ask you to please complete the form below today: 30.12.2020

Continue to the form.

We hope to hear from you soon.
Best Regards
Parcel Delivery Centre.

The non https link goes to a site at the following domain consumerhelpau-ec.com

I received another spam on the Nespresso only email address, subject: Samsung tester needed in your area

I'm not saying they have had a leak but something is up here, the fact that they have my full name shows its not just them trying random email addresses. Have any other Nespresso customers received anything like this?

Thanks!

General Discussion

Related Stores

Nespresso
Nespresso

Comments

  • markathome on 01/01/2021 - 09:55

    Evidence sounds compelling. Provided it's not [email protected] or [email protected]. I'd say report it, but I'm not sure who to.

    • No on 01/01/2021 - 11:23
      +1

      Nah it was a very unique email, I also searched my Gmail for any other emails received at this address and it just comes back nespresso emails and these 2 spam messages.

      I'm interested if other nespresso customers got similar spam.

      It's possible that the details got lifted off a delivery label or something so I'm not jumping to any conclusions. My last order from them was a few years ago so I don't recall if they list the email on the labels.

  • holdenmg on 01/01/2021 - 09:58

    Coffee flavoured data leak.

    • No on 01/01/2021 - 11:20
      +1

      It makes it so much harder to search because the internet is full of my coffee machine leaks posts.

      • Quantumcat on 01/01/2021 - 12:36
        +1

        Try the word breach rather than leak?

        • No on 01/01/2021 - 13:36

          Good idea! No luck there either.

  • soan papdi on 01/01/2021 - 10:42
    +1

    I had the same experience last month and also use service specific email addresses. The spam was from kogan confirming an account creation. Either there's a data breach or nespresso is pimping our addresses for some cash

    • stirlo on 01/01/2021 - 14:00

      ^This

      Unfortunately most of the T&Cs you agree to allow them to share your details with "marketing partners" If Nespresso passed on your details to one of these companies and they sold it to spammers you're kind of out of luck.

  • orangetrain on 01/01/2021 - 11:52
    +1

    Report nespresso for spam to ACMA. Let their lawyers decide whether to admit to being breached or selling your personal data without your consent.

    Nestle is an evil company, pls don't support unless you hate babies and free water.

    • whooah1979 on 01/01/2021 - 12:17

      But the gains a good and they keep Unilever on their toes, right?

  • whooah1979 on 01/01/2021 - 12:00
    +1

    Breaches to centralised DB are guaranteed to happen to all businesses that holds any data of value, sooner rather than later. Customers rely on these businesses to secure their data using outdated methods with known vulnerabilities.

    https://www.washingtonpost.com/national-security/microsoft-r…

    • No on 01/01/2021 - 12:47

      I'm aware it happens and with the data they hold on me I'm not too concerned.

      This happened previously with another company, I searched and found a lot of other people talking about the same thing so this one is a bit surprising.

    • orangetrain on 02/01/2021 - 11:32

      Not guaranteed. Google has been around for decades. Went through hundreds of thousands of employees. IT security at some companies are shit because it requires money to protect consumers privacy. Instead they would rather sell it.

  • elgrande on 01/01/2021 - 13:10

    After stopping in at Nespresso in chatswood I can confirm I experienced a leak.

  • adam on 01/01/2021 - 14:49
    +1

    I use a catchall email address too and so have a unique email address for Nespresso. I have not received spam/scam emails like you have. I note that as well as receiving email from Nespresso on this email address I've also received emails from their delivery partners about my deliveries and their survey partners surveying my interactions. So if there is a breach it may not be directly from Nespresso, but perhaps one of these partners.

    • No on 01/01/2021 - 14:57

      Thanks for checking. I've never received any partner emails, mind you I unsubscribed from nespresso a while ago.

  • timmypete on 02/01/2021 - 10:26

    I use wildcarding and have a unique email registered (nespresso@mydomain.com) and am not getting spam at the address. If it helps, I have an account but opted out of receiving marketing emails mid 2019.

    As an aside, wildcarding email is really good from an inbox management point of view, as well as providing an extra layer of protection on some of the phishing attempts purporting to be from banks or other suppliers. I have had around a dozen emails leaked in the past decade - eg Adobe, some newsletters, a law firm, a corporate HR firm, LinkedIn. This helped spot the first issue, and train spam filters (if sent to adobe@mydomain.com but not from an Adobe address/IP, flag as likely spam).

  • holdenmg on 02/01/2021 - 10:46

    CoffeePodGate™

Login or Join to leave a comment
Login Join