Durex India, a brand that sells condoms and lubricants, accidentally shared customers' personal information on its website. TechCrunch first reported this issue, which is a big deal because the information is private.
How Did It Happen?
A security expert, Sourajeet Majumder, found that Durex India's website didn't have enough protection for customer data. The order confirmation page was not secure, so details like names, phone numbers, email addresses, and addresses were exposed.
Majumder thinks many customers might be affected. For a company dealing with personal products, protecting customer data is very important, but the website’s lack of security caused this problem.
What Are the Risks?
Exposed information could be used for identity theft or fraud. Customers might also face embarrassment or harassment because buying these products is usually private.
What’s Being Done?
Majumder told India’s Computer Emergency Response Team (CERT-In) about the issue. We don’t know yet what actions have been taken to fix it.
What Should You Do?
If you’ve bought from Durex India recently, keep an eye on your accounts for any unusual activity and be careful of unexpected messages or calls. You might also want to contact Durex India to find out what they’re doing to protect your data.
This situation shows how important it is for companies to have strong security to protect sensitive information. Durex India needs to act quickly to regain customer trust and ensure better security in the future.