Moonpig is telling its customers that all password and payment information is secure. However, it seems that the vulnerability, if confirmed, would allow an attacker to access the account details of other customers. If this vulnerability is confirmed, this is alarming especially for a provider of an online shopping application used to transmit highly sensitive data. It’s important that companies take information about a vulnerability in their products very seriously. In recent years, companies have been willing to publicly acknowledge such issues and take steps to remedy the situation.”]
Source: https://informationsecuritybuzz.com/articles/moonpig-vulnerability-kaspersky-lab-comments/