Cybersecurity researchers have discovered that the personal data of about 2.5 million Canadian customers of cosmetics brand Yves Rocher were left exposed due to being hosted on an unsecured database.
Researchers from vpnMentor discovered a vulnerability in the Elasticsearch database where Yves Rocher customers’ data was saved on. Customer information that may have been compromised by the vulnerable database include first and last names, dates of birth, phone numbers, email addresses, and zip codes.
You've reached your limit - Register for free now for unlimited access
To read the full story, and get unlimited access to Insurance Business website content, just register for free now. GET STARTED HERE
Already a website member? Log in below.