Online retailer Esquimal leaked the data of thousands of users via an open server. Threat actors apparently noticed this and hit the Mexican company with ransomware.
The Cybernews research team discovered an unprotected server with over 77,000 entries of personal identifiable information (PII), such as names, email addresses, and phone numbers.
The open dataset belongs to customers of Esquimal, an online Spanish-language retailer based in Mexico. According to our researchers, it contained 9.2GB worth of vulnerable data.
Interestingly, the dataset was mostly made up of details entered by Esquimal customers who used the live chat functionality on the retailer’s website, which was left unprotected.
The dataset also contained plaintext credentials for its support email. Threat actors could use this information to log in to company databases and access more information about customers.
For example, the credentials found on the database could allow threat actors to take over Esquimal’s customer support system, potentially opening access to all of the information that the company stores on customers, excluding order data.
Additionally, the open servers held emails, names, and passwords belonging to 33 Esquimal employees. However, unlike support email credentials, employee data was hashed to protect it from easy access.
Full article here https://cybernews.com/security/esquimal-hit-with-ransomware-customer-data-exposed/
#esquimal #ransomware #customer #data #leak #mexico #yokdata #blog