Zappos began notifying its customers about a network intrusion that led to the theft of customers’ names, addresses, email addresses, and encrypted passwords. Because the passwords were encrypted, it’s unlikely that attackers would be able to immediately decode them all. The answer to that question depends on numerous factors, including the complexity of each password, as well as whether the company had both salted and hashed customers’ stored passwords. Kaspersky Lab’s Kurt Baumgartner said it’s likely that many customers’ passwords aren’t safe.”]
Source: https://www.darkreading.com/attacks-breaches/zappos-breach-renews-calls-for-stronger-passwords