Zappos sent out an email to employees and customers telling them that the company was recently the victim of a cyber attack.
The website said information accessed may include customers' names, e-mail addresses, billing and shipping addresses, phone numbers and passwords.
Zappos says the database that stores credit cards and other payment data was not breached. Customers must now create a new password.