SlickWraps are completely compromised. All your data is leaked

Eden · February 22, 2020, 9:30am

So I hope no one has used SlickWraps? They are a competitor to the likes of dbrand. Unfortunately it seems that their operational security is so broken that literally every system they have is vulnerable and are still today seemingly compromised.

Data has been pulled of their servers including customer data which includes basically everything so if you’ve used them you may want to update your info, correct any reused password etc.

What’s more amazing is instead of fixing the issue they decided to burry their head in the sand, blocked the hacker on social media, and his medium article deleted (unknown if that was also SlickWraps reporting him).

You can read it all here

MetalizeYourBrain · February 22, 2020, 10:19am

This is unbelievable. Thanks for sharing the article, was a really interesting reading.

alwaysFlOoReD · February 22, 2020, 4:54pm

Wow…

FaunCB · February 22, 2020, 5:21pm

Ha

Fucking idiots

Eden · February 22, 2020, 5:22pm

All these replies are completely appropriate for the incompetence

FaunCB · February 22, 2020, 5:27pm

Welcome to trumps america where no one pays taxes and the politics don’t matter

Eden · February 23, 2020, 8:05pm

It seems to be turning into its own little drama

One thing seems clear from reading into it the last day. SlickWraps seems to be a pretty terrible company.

Eden · February 23, 2020, 8:07pm

This is the email they eventually sent to customers

Eden · February 23, 2020, 8:10pm

This is the email the hacker sent prior to SlickWraps apparently because of their inaction to inform their customers.

Just got completeness

While SlickWraps have said it doesn’t affect people who checked out as a guest apparently many people are saying the used the guest checkout but still received an email from the hacker.

https://www.slickwraps.com/blog/update/

AnotherDev · February 23, 2020, 10:13pm

I used to be just as annoyed with the “hackers” as I was with the company negligence.

But after reading the below too many times:

Before I begin, it is important to note that I have exhausted all other options.

I notified SlickWraps multiple times of their egregious security vulnerabilities which (still) exist on their Magento-based eCommerce platform.

They had no interest in accepting security advice from me. They simply blocked and ignored me

The grumpy cat “good” is the only thing that comes to my mind anymore.

ImprovizoR · February 23, 2020, 11:08pm

This is freakin’ hilarious. In a decent world they’d be out of business already.

disarrayer · February 23, 2020, 11:09pm

Wow… Just wow. I would be surprised if they stayed in business.

disarrayer · February 23, 2020, 11:30pm

Thanks @Eden

ohtwoone · February 24, 2020, 3:12am

Here’s hoping the EU nails them through GDPR, then they’ll hopefully go bust.

Hammerhead_Corvette · February 24, 2020, 3:56am

Did troy Hunt update Have I Been Pwned ?

AnotherDev · February 24, 2020, 4:09am

His Twitter account is gone, too.

FaunCB · February 24, 2020, 4:14am

Yus

FaunCB · February 24, 2020, 4:15am

Whaaaaat. This shit’s like his job tho

AnotherDev · February 24, 2020, 4:19am

Doesn’t matter. You get got on Twitter.

AnotherDev · February 24, 2020, 4:21am

I don’t even know what dbrand is, but they’re God damned hilarious. They meme hard, bro.

OMG fucking dying