Collectibles.com exposes data of 870,000 users

A significant data leak was discovered at Collectibles.com, a popular marketplace for collectible cards. Cybernews reported finding a non-password-protected database containing sensitive information for nearly 870,000 users. The database included users' full names, email addresses, and transaction histories. Experts warn that this exposure puts individuals at risk for identity theft and fraud. Cybernews highlighted that the presence of user details could enable targeted scams. Collectibles.com, previously known as Cardbase, allows users to buy and sell various collectibles. In a press release last year, they claimed to have around 300,000 users. After discovering the leak, Cybernews attempted to alert the company but received only an automated response. The database was closed ten days later, although it's unclear how long it was accessible before detection. Data leaks like this one are often caused by insecure databases. Many organizations keep large amounts of customer data without adequate security, believing cloud services are automatically safe. Security experts and cybercriminals can easily find these vulnerabilities and exploit the information.