With our personal data appearing online in various ways, it’s hard to avoid privacy breaches. If you’ve recently ordered something on eBay, Shopify, or Amazon, there’s a chance your details have fallen into malicious hands.
Hipshipper Leaks 14.3 Million Personal Records
As CyberNews reported, a company called Hipshipper suffered a data leak. Hipshipper is an international shipping platform for eBay, Shopify, and Amazon sellers, and because of its position, it handles a lot of packages. This means a ton of personal information flows through Hipshipper’s systems at any given time.
In December, researchers at CyberNews stumbled upon an Amazon Web Services (AWS) bucket owned by Hipshipper. In the world of data, a bucket is a container companies use to store tons of information. In this case, the AWS bucket had been filled with 14.3 million postage labels featuring the following information:
Full names
Home addresses
Phone numbers
Order details (dates of mailing, parcel information, etc.)
The bucket wasn’t secured, meaning anyone could scrape this data from the bucket. Fortunately, Hipshipper secured the bucket after being informed of the issue, but it still gave bad actors plenty of time to harvest user data.
Unfortunately, there are plenty of things a cybercriminal can do with your home address, so if you believe you’ve been caught up in this mess, you may need to keep an eye out for trouble in the near future. The CyberNews researchers believe this data is enough for a bad actor to perform “stalking, harassment, or planning burglaries,” so keep yourself safe.
Plus, given how a bad actor can see what you ordered, they can craft more believable shipping scams when targeting you. As such, keep an eye out for fake shipping texts if you think you were affected by this breach, as they may be ploys to steal more of your information.
