Hack of online shoe retailer reveals customers’ and administrators’ passwords
I try to remember to check data dumps on Pastebin to see what’s showing up. Today I see a data dump of customer data reportedly acquired from online shoe retailer Zapateria Orinoco. There are 487 customers’ e-mail addresses, clear-text passwords, security questions and security answers.
Ugh.
But wait, there’s more. Two administrator accounts with clear-text passwords.
Double ugh.
The hacker, who identifies him/herself as @n4n0Cynet, does not offer any explanation for this particular incident, but appears to affiliate with Anonymous.