Security breach on Pepperfry exposes details of users; now plugged
Pranav Hegde reports:
A major security flaw was detected on online furniture store Pepperfry’s website, which could have allowed users to sign in to another registered user’s account. Pepperfry has claimed that the bug was fixed within an hour of being detected.
Security researcher Ehraz Ahmed found the bug on Pepperfry’s website, which could have led to the security flaw. Speaking exclusively to Moneycontrol,
Read more on Moneycontrol for a description of, and screencaps of, the flaw. This is a good example of how being responsive to a notification can result in promptly fixing a problem.