Excerpt from Fox News Article, Published on Feb 20, 2025.
A massive data leak has exposed over 14 million customer shipping records, affecting sellers on major e-commerce platforms like eBay and Spotify. The breach was traced back to an unprotected AWS bucket owned by Hipshipper, a global shipping platform that assists eBay and Spotify sellers in delivering packages worldwide. The exposed data included sensitive customer details such as full names, home addresses, phone numbers, and order specifics. This security lapse was discovered in December 2024 during the peak holiday shopping season, when millions of people were actively shipping and receiving gifts. Unfortunately, the unprotected bucket remained open until January, leaving the information vulnerable for over a month.
Cybernews researchers who uncovered the breach warned that cybercriminals could exploit the leaked data for scams and phishing attacks. With access to shipping labels and order details, fraudsters might impersonate trusted businesses and trick unsuspecting customers into revealing personal or financial information. Given the vast number of eBay and Spotify sellers relying on Hipshipper for global shipping, the potential impact of this exposure is significant. Data breaches have become a growing concern across all industries, from healthcare to finance and technology. The latest incident highlights the pressing need for stronger cybersecurity measures, even in the logistics sector. Retail businesses, including eBay and Spotify sellers, must ensure their shipping partners implement robust security practices to safeguard customer data.
While there is no direct evidence that cybercriminals accessed the exposed records, millions of malicious bots scan the internet daily, searching for unsecured databases. Cybersecurity experts stress that companies must prioritize data protection to prevent such incidents. As data leaks continue to rise, both businesses and customers must take proactive steps to enhance security and mitigate risks. The eBay and Spotify seller communities, in particular, should remain vigilant and adopt best practices to protect sensitive information.
To delve deeper into this topic, please read the full article Fox News.
