Primary Image

Severe Moonpig vulnerability puts customer details in the open

A simple, but catastrophic flaw in Moonpig.com security has been discovered and puts ALL customer information, including credit cards, at risk. If you're a customer, even changing your password won't resolve the problem as the data is available via an open API that requires no authentication.

Moonpig have been aware of this issue since AUGUST 2013 and it has been highlighted in a blog post here.

Right now, the only solution is for Moonpig to resolve the issue immediately however given the severity and ease of exploitation of the flaw, customer information should already be considered compromised.

We need your help

Running a website like The Digital Fix - especially one with over 20 years of content and an active community - costs lots of money and we need your help. As advertising income for independent sites continues to contract we are looking at other ways of supporting the site hosting and paying for content.

You can help us by using the links on The Digital Fix to buy your films, games and music and we ask that you try to avoid blocking our ads if you can. You can also help directly for just a few pennies per day via our Patreon - and you can even pay to have ads removed from the site entirely.

Click here to find out more about our Patreon and how you can help us.

Did you enjoy the article above? If so please help us by sharing it to your social networks with the buttons below...

Category News

Latest Articles