17 Mar Sensitive Data of Millions of Limogés Jewelry Customers Exposed
Kromtech security researchers recently revealed that Limogés Jewelry, a Walmart partner, had left the data of millions of customers exposed in an unsecured Amazon S3 bucket.
The researchers initially thought that the data was the property of Walmart, since the storage bucket was named ‘walmartsql’, but upon further inspection they found that it actually belonged to MBM Company Inc., which owns the Limogés brand.
Kromtech Security’s head of communications Bob Diachenko said that they found the private and sensitive data belonging to more than 1.3 million people which included residential addresses, email IDs, IP addresses and zip-codes along with plaintext passwords.
Kromtech said that Walmart immediately fixed the issue upon their notification, but MBM has yet to release a statement on the matter.