Security News > 2019 > March > Unsecured Gearbest server exposes millions of shoppers and their orders

Chinese e-commerce giant Gearbest has exposed information and orders of millions of its customers through an unsecured Elasticsearch server, security researcher Noam Rotem and his team have found. What kind of data was exposed? According to Rotem, the server was not protected with a password and anyone could access it and search the data. Also, despite assurances from the company that sensitive data is encrypted, most of the contents of the database were decidedly not. … More → The post Unsecured Gearbest server exposes millions of shoppers and their orders appeared first on Help Net Security.

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/HQEthHeuXX4/