B&Q investigates major security fail

B&Q stands accused of exposing details of suspected store thieves to the net without password protection.

The matter was flagged up in a blog post by Lee Johnstone of Ctrlbox Information Security.

"We have closed the issue down and are continuing to investigate how it occurred," said a B&Q spokeswoman. She added that there were a number of other inaccuracies in the blog post, but did not reveal what they were.

"Our continuing investigation will help us decide whether an ICO [Information Commissioner's Office] notification is required," she concluded.

Sign up for our free retail technology newsletter here.

Featured

Mar 4

Mar 4, 2024 – Dec 31, 2024

2024 RTIH Innovation Awards

Mar 4, 2024 – Dec 31, 2024

Apr 24

Apr 24, 2024 – Apr 25, 2024

Retail Technology Show 2024

Apr 24, 2024 – Apr 25, 2024

May 8

May 8, 2024 – May 9, 2024

Smart Retail Tech Las Vegas 2024

May 8, 2024 – May 9, 2024

Jun 3

Jun 3, 2024 – Jun 5, 2024

Shoptalk Europe 2024

Jun 3, 2024 – Jun 5, 2024

Jan 12

Jan 12, 2025 – Jan 14, 2025

NRF 2025

Jan 12, 2025 – Jan 14, 2025

Feb 25

Feb 25, 2025 – Feb 26, 2025

Smart Retail Tech Expo 2025

Feb 25, 2025 – Feb 26, 2025

SecurityStaff WriterJanuary 29, 2019B&Q, Online retail, CTRLBOX, Security, FraudComment