The online discount portal SoSasta.com confirmed the security breach and said that it had taken precautionary measures to solve the problem. Media reported that the company had sent mails to users alerting about the data breach and also asked them to change their passwords.
"we are working aggressively to prevent this from happening again. SoSasta takes security and privacy very seriously -- it is important to us to provide you with a safe shopping experience of the highest quality, and we will do everything possible to keep your trust," SoSasta said in a statement.
The breach was noticed by a internet security consultant Daniel Grzelak. He said that he found the massive breach while searching for for publicly available databases.
Groupon, which acquired Sosasta in Jan 2011, said that they are looking into the matter and taken "measures designed to prevent this kind of issue from recurring."