Security breach McKinsey - email adresses exposed after unauthorized entry of mail system service provider

Last week McKinsey send a note to users from which email information was exposed due to unauthorized entry into the system of their email service provider.

Important information from McKinsey Quarterly


We have been informed by our e-mail service provider, Epsilon, that your e-mail address was exposed by unauthorized entry into their system. Epsilon sends e-mails on our behalf to McKinsey Quarterly users who have opted to receive e-mail communications from us.


We have been assured by Epsilon that the only information that was obtained was your first name, last name and e-mail address and that the files that were accessed did not include any other information. We are actively working to confirm this. We do not store any credit card numbers, social security numbers, or other personally identifiable information of our users, so we can assure you that no such information was accessed.


Please note, it is possible you may receive spam e-mail messages as a result. We want to urge you to be cautious when opening links or attachments from unknown third parties. Also know that McKinsey Quarterly will not send you e-mails asking for your credit card number, social security number or other personally identifiable information. So if you are ever asked for this information, you can be confident it is not from McKinsey.


We regret this has taken place and apologize for any inconvenience this may have caused you. We take your privacy very seriously, and we will continue to work diligently to protect your personal information.

McKinsey & Company

Nice little note from McKinsey, but makes you wonder or a little worried. I'm not the man who is worried lightly when it comes to security. Technology is becoming better every day, people are the biggest threath to security and security breaches will be there no matter what measures taken. Fact.

I do admire this gesture of openess by McKinsey. There was a problem and we are sorry is basicaly the message. We will take action to be sure your privacy is secure is what they tell you.

Some uncertainty stays behind. It gets into your head. Although there seems to be no harm done, no important information leaked, but security is all about fear and trust.