U.S. supermarket chain Wegmans says it misconfigured two cloud databases, exposing customer data to public scrutiny. The issue was first brought to the company s attention when a third-party security researcher pointed out the problem. The databases contained customer information including names, addresses, phone numbers, birth dates, Shoppers Club numbers, as well as e-mail addresses and passwords. The company added that all of the affected account passwords were salted and hashed, meaning the actual passwords were obscured in the databases.
Source: https://threatpost.com/wegmans-exposes-customer-data-misconfigured-databases/167099/