Tuft & Needle exposed thousands of customer shipping labels

Tuft & Needle exposed thousands of customer shipping labels

5 years ago
Anonymous $4bURcB5AtU

https://techcrunch.com/2019/12/02/tuft-and-needle-exposed-shipping-labels/

Mattress and bedding giant Tuft & Needle left hundreds of thousands of FedEx shipping labels containing customer names, addresses, and phone numbers on an unprotected cloud server.

More than 236,400 shipping labels were found on an Amazon Web Services (AWS) storage bucket without a password, allowing anyone who knew the easy-to-guess web address access to the customer data. Often, these AWS storage buckets are misconfigured by the owner by being set to “public” and not “private.”