Researchers today revealed that a misconfigured cloud database has potentially exposed the customers of luxurious women’s fashion store Moda Operandi to phishing and fraud. The 25GB-sized unprotected Elasticsearch cluster contains production logs filled with personal and order information which appear to be part of Moda Operandi’s event logging environment. The exposed information includes names, addresses, phone numbers, and emails. Researchers suggest that all US and Canada-based customers who purchased online at Moda Operandi during that time are in the risk zone.
Expert Commentary: Moda Operandi Exposed Personal And Order Details Of Its Customers
Information Security Buzz is an independent resource that provides the experts’ comments, analysis, and opinion on the latest Cybersecurity news and topics