WALMART JEWELRY WEDDING RINGS – You have MBM Company INC. Do you know it? You probably do not know because you know a little about this name, but you need to know the Limoges Jewelry brand.
Limoges Jewelry is really a brand from MBM Company Inc., based in Chicago, IL. The company sells jewelery for children, jewelry for men and women, such as pendants, earrings, necklaces, watches, pendants and wedding rings.
WALMART JEWELRY WEDDING RINGS
Limoges jewel customers were introduced 1.3 million
MBM is well-known in the industry, but the current news is for the wrong reasons. The German security company Kromtech Security scientists found that the Amazon S3 was not secure with MSSQL database backups. The Kromtech Security Research Team believes that MBM is unmanageable in managing user data.
Initially, scientists suspected that the data belonged to Walmart because the storage location was called “Walmartsql”. After a careful analysis of the study, they concluded that they have MBM Inc. consulting. They also individually identify the file. Walmart was part of the database.
Simple text passwords that are public.
Bob Diachenko, Communications Manager at Kromtech Security, reported that, according to a later analysis of detected files, it contained more than 1.3 million (1314 people) confidential and confidential information. 193 more fully).
Information includes sensitive personal information such as home addresses, email addresses, IP addresses, and postal codes, as well as clear passwords for many people. This is not all; The file also includes internal mailing lists, orders and promotional codes. Diachenko described it as “gross negligence” by MBM Company Inc.
“Passwords are stored in plain text, which is a serious mistake because of the many users who recycle passwords for different accounts, including email accounts,” Diachenko says.
The recognized backup file is “MBMWEB_backup_2018_01_13_003008_2864410.bak”; The researchers confirmed that it was created on January 13, 2018. The database contains information on customer companies in the United States and Canada, as well as updated information. Y2K user data is also part of the database, and the latest information is at the beginning of 2018. According to experts, this may be the MBM’s most important database.
Diachenko says that this can be described as a serious problem given the severity of this event. Several factors influence the cumulative adoption of MBM’s insecure practices. For example, the department title was “easy to guess” and it had a common track of the S3 domain, which anyone can identify with several scanning tools on the Internet.
Moreover, the existence of passwords as plain text is also a big problem, said Diachenko, as most users use the same passwords for different accounts, including emails.
At this stage it is not clear whether a malicious third party has access to the database because the researchers did not notice the purchase request. When MongoDB databases were unveiled earlier, regular notebooks were reviewed. However, this is not a regrettable situation. But only on this basis it is hard to say that nobody has access to the database, said Diachenko.
Dissatisfied Amazon S3 classes have already found a number of traditional companies, but it’s a simple ability to check the cubes. The MBM is not the first to protect the customer base, but FedEx, Alteryx, the City of Chicago and RNC Deep Root seem to be inadequate security measures.
Security experts assume that companies must know the safety concepts before using this technology. The storage location is open to the public, while confidential personal information, such as passwords, is included. By sending ants and passwords so many accidents with the Amazon S3 deposit is simply a neglect.
MBM companies also find it difficult to save personal customer information directly to a shopping cart. Clear passwords Diachenko recommends that companies keep passwords in an encrypted format and force users to enter passwords in at least one uppercase letter.
for small letters, symbols and numeric symbols Complex and password (up to 12 characters) Kromtech Security Investigators have informed Walmart of US S Accessibility Loop and the retail giant has verified it immediately. Until now, MBM has not issued any statement. In the past, in the S3 store in Amazons, millions of customers have recently faced personal and personal problems. Suspended from Amazon S3 unsecured public areas. Here is a list of some of the cases:
Tags: #WALMART JEWELRY DEPARTMENT WEDDING RINGS #WALMART JEWELRY MENS WEDDING BANDS #WALMART JEWELRY MENS WEDDING RINGS #WALMART JEWELRY WEDDING BAND SETS #WALMART JEWELRY WEDDING BANDS #WALMART JEWELRY WEDDING RINGS #WALMART JEWELRY WEDDING RINGS SETS