8 Million Sales Records On Amazon, Ebay, Shopify Exposed – Security Expert Opinion

By   ISBuzz Team
Writer , Information Security Buzz | Mar 11, 2020 03:35 am PST

It was announced today that a third-party app used by EU merchants on Amazon UK, Ebay and Shopify was found to have exposed 8 million sales records containing customers’ personal data.

Subscribe
Notify of
guest
1 Expert Comment
Newest
Oldest Most Voted
Inline Feedbacks
View all comments
Dr. Vinay Sridhara
March 11, 2020 11:37 am

The DevOps revolution and cloud computing have resulted in a double edged sword for enterprises. The same tools that enable organizations to move fast have caused untold, embarrassing breaches like this, showcasing the direct result of rapid adoption without sufficient security oversight. These security incidents continue to recur, all following the same script – customer data gets uploaded to cloud server; well-meaning developer neglects to password protect or encrypt that externally exposed database; hacker or threat researcher exposes the data. Unencrypted, unauthenticated, publicly accessible databases wait for bad actors to discover them.

Despite billions invested in security, enterprises are failing at the infosec equivalent of washing their hands. Since an organization can\’t improve what it can\’t measure, the starting point for a company to improve their cyber hygiene is to inventory, categorize, and measure the criticality of their assets. From there, basic resilience begins with identity, encryption, and network segmentation.

Last edited 4 years ago by Dr. Vinay Sridhara

Recent Posts

1
0
Would love your thoughts, please comment.x
()
x