Home / Software & Service News / Saks Fifth Avenue left customer data exposed to the public

Saks Fifth Avenue left customer data exposed to the public

Sometimes, hackers don’t have to lift a finger to swipe valuable shopping data — it can be sitting right out in the open. BuzzFeed News has found that a number of associated major fashion stores, including Saks Fifth Avenue, Gilt and Lord & Taylor, were storing info for tens of thousands of customers in plain text on their servers. There was no payment data, thankfully, but the content revealed email addresses, phone numbers, internet addresses and product IDs. If a malicious visitor wanted to commit identity fraud or scam a customer, they had at least some of what they needed.

The brands’ Canadian parent, Hudson’s Bay Company, has since taken the info down while it works on a solution, and says that only “some email addresses” were affected. HBC maintains that it follows “industry best practices” for security, but that isn’t really the case when anyone snooping around its web code could have found the info. BuzzFeed adds that the sites have an inconsistent approach to web encryption, protecting certain pages (such as the login page) but not others. Someone on the same local network could grab unencrypted web traffic and potentially use it to compromise an account.

While there’s currently no evidence to suggest that someone made off with the data before it was taken down, the discovery isn’t very reassuring. It suggests that online shops are still making basic security mistakes, and don’t always realize that even limited data exposure can be very dangerous. It only takes a nosy intruder to turn a blunder like this into a serious incident.

Source: BuzzFeed News

Click Here For Original Source Of The Article

About Ms. A. C. Kennedy

Ms. A. C. Kennedy
My name is Ms A C Kennedy and I am a Health practitioner and Consultant by day and a serial blogger by night. I luv family, life and learning new things. I especially luv learning how to improve my business. I also luv helping and sharing my information with others. Don't forget to ask me anything!

Check Also

Microsoft’s Seeing AI app for the blind now reads handwriting

Artificial intelligence took center stage at Microsoft's AI Summit in San Francisco on Wednesday. Aside from announcing AI smarts for a range of software -- from Bing to Office 365 -- the tech titan is also ramping up its Seeing AI app for iOS, which uses computer vision to audibly help blind and visually impaired people to see the world around them. According to Microsoft, it's nabbed 100,000 downloads since its launch in the US earlier this year, which convinced the tech titan to bring it to 35 countries in total, including the EU.

It's also getting a bunch of new features. The app now boasts more currency recognition, adding British pounds, US dollars, Canadian dollars, and Euros to its tally. Going beyond the color in a scene, it can also spot the color of specific objects, like clothes. Plus, it's no longer restricted to just short printed text, with handwriting recognition now part of its skill set. You can also customize the voice that it uses to speak its observations out loud, and set how fast it talks.

Finally, a musical light detector alerts you to the light in an environment with an audible tone -- Microsoft claims the tool will save users from having to touch a hot bulb or LED battery to check if it's on. Despite the big update, there's still no word on an Android launch.

Source: Microsoft

css.php