You must Register or Sign in to your Cyware account to perform this action
×Once you are logged in, you will be able to:
Customize your feeds by selecting categories you like
Comment on or Like an article
Receive the latest security stories, trends, and insights in your inbox
Build your profile and login across multiple devices
Bookmark a story and read it later
- Home
- Hacker News
- Breaches and Incidents
- Florida marijuana dispensary website accidentally leaked customer information

Florida marijuana dispensary website accidentally leaked customer information
Florida marijuana dispensary website accidentally leaked customer information- December 5, 2018
- |
- Breaches and Incidents
/https://cystory-images.s3.amazonaws.com/iStock-121156620.jpg)
- The flaw existed in the search function of AltMed website.
- It allowed anyone to view customers’ data by just using the site’s search function.
A flaw in the Florida-based AltMed website, a site that distributes marijuana, resulted in exposing customers’ information. The flaw allowed anyone to view customers’ data by just using the site’s search function. In the wake of the data leak, the firm took down its site and began notifying its customers about the breach.
What happened?
The medical marijuana website AltMed, which also operates under the name of MüV, was informed about the flaw in its website's search function by a customer on the firm’s Facebook page. The firm immediately took down the site and hired a security firm to resolve the issue.
“Within 10 minutes, our Information technology staff removed the search engine function. We then retained Kroll, Inc. an industry leader in data risk and security,” said the company, SC Magazine reported.
The site continues to remain offline and all sections of the site that contain customer information have been disabled temporarily. The number of customers affected and the type of information exposed in the leak is still unknown. However, the company believes that the flaw in the search function may have exposed a limited amount of data.
“Based on the forensic review thus far it appears that there was limited access to the site with limited information accessed. The review will continue until we fully understand what happened and who is responsible,” said the company, SC Magazine reported.
- + Aware
Get such articles in your inbox
News
-
Previous News Magecart’s new group 11 takes aim at admin credentials in new attacks
- December 5, 2018
- |
- Breaches and Incidents
-
Next News US Republicans were hacked and their emails stolen during the 2018 midterm election
- December 5, 2018
- |
- Breaches and Incidents
Popular News
Related News
-
Buyback website reveals details of 37,000 gun owners
- December 2, 2019
- |
- Breaches and Incidents
-
Mixcloud Breach Exposes 21 Million User Records
- November 30, 2019
- |
- Breaches and Incidents
Categories
Get such articles in your inbox
News
-
Previous News Magecart’s new group 11 takes aim at admin credentials in new attacks
- December 5, 2018
- |
- Breaches and Incidents
-
Next News US Republicans were hacked and their emails stolen during the 2018 midterm election
- December 5, 2018
- |
- Breaches and Incidents
Popular News
Related News
-
Buyback website reveals details of 37,000 gun owners
- December 2, 2019
- |
- Breaches and Incidents
-
Mixcloud Breach Exposes 21 Million User Records
- November 30, 2019
- |
- Breaches and Incidents
Categories
