Arts-and-crafts retailer Hobby Lobby has suffered a cloud-bucket misconfiguration, exposing a raft of customer information, according to a report. An independent security researcher who goes by the handle Boogeyman uncovered the issue and reported it to Motherboard in an online chat. Customer names, partial payment-card details, phone numbers, and physical and email addresses were all caught up in the leak. The issue is now resolved, but it s unclear if malicious actors tapped the information before the database was secure.
Source: https://threatpost.com/hobby-lobby-customer-data-cloud-misconfiguration/164980/