Data Breach: Durex India, a branch of the British condom and personal lubricants brand, experienced a data breach exposing sensitive customer information.
Exposed Information: The leaked data includes customers’ full names, phone numbers, email addresses, shipping addresses, and order details.
Security Issue: Security researcher Sourajeet Majumder discovered the breach, which was caused by inadequate security measures on the brand’s order confirmation page.
Affected Individuals: Although the exact number of affected customers is unclear, the nature of the products makes the breach particularly sensitive.
Public Concern: Majumder publicly shared his findings, emphasizing the risks posed by the security lapse and its potential impact on customers’ privacy and safety.
Potential Risks: Majumder warned that the leaked data could lead to identity theft, social harassment, and moral policing of the affected customers.
Response: The parent company, Reckitt, has not yet commented or provided details on securing the compromised information.
Authorities Informed: Majumder notified India’s Computer Emergency Response Team (CERT-In), which acknowledged his report.
