Expert Commentary: Moda Operandi Exposed Personal And Order Details Of Its Customers

Researchers today revealed that a misconfigured cloud database has potentially exposed the customers of luxurious women’s fashion store Moda Operandi to phishing and fraud. The 25GB-sized unprotected Elasticsearch cluster contains production logs filled with personal and order information which appear to be part of Moda Operandi’s event logging environment. The exposed information includes names, addresses, phone numbers, and emails. Researchers suggest that all US and Canada-based customers who purchased online at Moda Operandi during that time are in the risk zone.


EXPERTS COMMENTS
Pravin Rasiah, VP of Product,  CloudSphere
October 09, 2020
To prevent misconfigurations in the cloud, a comprehensive view of the cloud environment is critical.
When data leaks occur, it is often the result of a lack of awareness within the cloud environment. Without proper visibility into deployments, any change or update in policy could impact security and result in a devastating breach putting customer information at risk. To prevent misconfigurations in the cloud, a comprehensive view of the cloud environment is critical. Businesses should enforce sec ....
[Read More >>]

If you are an expert on this topic:

Submit Your Expert Comments


In this article