Ontario Cannabis Store breached the data of 4500 marijuana buyers due to the vulnerability in the Canada Post website. Among the details exposed there were names, delivery information and tracking numbers.
Canada Post was asked by the Ontario Cannabis Retail Corporation to inform the OCS customers promptly as well as to present the proof that the data wasn’t shared.
The CEO of the OCS, the only provider of recreational cannabis in the region, is seriously concerned about Canada Post’s inability to guarantee safety. 4500 customer orders were accessed by an OCS customer “using OCS reference numbers”. No data distributing was observed.
Almost 700 000 American Express clients in India got their personal details compromised. Names, phone numbers, emails and “description filed” kind of data stored on the MongoDB server was exposed online.
The breach was discovered by Bob Diachenko, director of Cyber Risk Research at Hacken, a cyber security company.
While Diachenko claims that the unprotected database is a job of one of the company’s subcontractors, AmEx insist that Bob might be the only one who accessed the information since they didn’t have any “evidence of unauthorised access”.
The problem was fixed as soon as it was reported though it was not clear for how long the server defense had been crashed.
SearchInform uses four types of cookies as described below. You can decide which categories of cookies you wish to accept to improve your experience on our website. To learn more about the cookies we use on our site, please read our Cookie Policy.
Always active. These cookies are essential to our website working effectively.
Cookies does not collect personal information. You can disable the cookie files
record
on the Internet Settings tab in your browser.
These cookies allow SearchInform to provide enhanced functionality and personalization, such as remembering the language you choose to interact with the website.
These cookies enable SearchInform to understand what information is the most valuable to you, so we can improve our services and website.
These cookies are created by other resources to allow our website to embed content from other websites, for example, images, ads, and text.
Please enable Functional Cookies
You have disabled the Functional Cookies.
To complete the form and get in touch with us, you need to enable Functional Cookies.
Otherwise the form cannot be sent to us.
Subscribe to our newsletter and receive a bright and useful tutorial Explaining Information Security in 4 steps!
Subscribe to our newsletter and receive case studies in comics!