Yves Rocher Caught in a Data Leak

Researchers discovered an unsecured database belonging to Aliznet, French retail consultancy. The exposed data belongs to Yves Rocher's 2.5 million of Canadian customers - names, phone numbers, email addresses and dates of birth. It also contains 6 million online customer orders with enough information to identify each individual. The database included as well internal corporate data of Yves Rocher, such as statistics on store traffic, order volumes, ingredients for over 40 thousand products, and more. It is unknown if the server has been since secured and leaves the question if other clients of Aliznet (such as IBM, Salesforce, Sephora and Louboutin) aren't at risk.

Author image

About Ariadna Pawluk

Cybersecurity enthusiast, hunting all the freshest news, insights and tidbits.