B&Q investigates major security fail

B&Q stands accused of exposing details of suspected store thieves to the net without password protection.

The matter was flagged up in a blog post by Lee Johnstone of Ctrlbox Information Security.

"We have closed the issue down and are continuing to investigate how it occurred," said a B&Q spokeswoman. She added that there were a number of other inaccuracies in the blog post, but did not reveal what they were.

"Our continuing investigation will help us decide whether an ICO [Information Commissioner's Office] notification is required," she concluded.

Sign up for our free retail technology newsletter here.

Featured

Mar 4

Mar 4, 2024 – Dec 31, 2024

2024 RTIH Innovation Awards

Mar 4, 2024 – Dec 31, 2024

Jan 12

Jan 12, 2025 – Jan 14, 2025

NRF 2025

Jan 12, 2025 – Jan 14, 2025

Feb 11

Feb 11, 2025

The Delivery Conference (TDC) 2025

Feb 11, 2025

Apr 2

Apr 2, 2025 – Apr 3, 2025

Retail Technology Show 2025

Apr 2, 2025 – Apr 3, 2025

Jun 2

Jun 2, 2025 – Jun 4, 2025

Shoptalk Europe 2025

Jun 2, 2025 – Jun 4, 2025

Sep 16

Sep 16, 2025 – Sep 18, 2025

NRF Retail's Big Show Europe 2025

Sep 16, 2025 – Sep 18, 2025

Sep 24

Sep 24, 2025 – Sep 25, 2025

eCommerce Expo 2025

Sep 24, 2025 – Sep 25, 2025

Oct 7

Oct 7, 2025

The FT Future of Retail Summit 2025

Oct 7, 2025

SecurityStaff WriterJanuary 29, 2019B&Q, Online retail, CTRLBOX, Security, FraudComment