Last week , security consultant Bob Diachenko found an unsecured database die hard by the Etsy - have medicine marketplaceReverb .

The bring out database , which contained exploiter data like headphone numbers , electronic mail , address , and even order data , was dangerous in its own right , but then Diachenko figured out how many customers were affected : 5.6 million , by his reckoning , an exceedingly huge rift that has become a sadly normal experience for on-line e - commercialism customer .

“ At first , it was n’t at once clear who owns this and what type of information it is , so I put it on a ledge — until now . Since the discovery , the IP with the database was take down , ” said Diachenko in aLinkedInpost . “ Upon closer inspection , I noticed that there are many ‘ test ’ emails coming from @reverb.com knowledge domain . I settle to verify store slugs against real URLs on the Reverb site and quickly confirmed the initial thought — it was all Reverb drug user ’ data . ”

Article image

Photo: VALERIE MACON / Contributor (Getty Images)

The waiter was an unprotectedElasticsearchinstance , a type of subject - seed database that can act as a superfast hunting railway locomotive . The tool , used by many online retailer and social media sites , allows for flying lookups of various scrap of data include , in this case , instant access to customer data point . This divine service should be locked down , but Diachenko has found multiple instances where the search engine was wide overt to all comers .

Diachenko checked the data and found it contained some interesting Reverb client .

“ To affirm my thought , I ran a quick check and was able to find several high - profiled vendor details , include Bill Ward of Black Sabbath , Jimmy Chamberlin of the Smashing Pumpkins , Alessandro Cortini of Nine Inch Nails and more , ” he compose .

Screenshot: Volodymyr Diachenko

Screenshot: Volodymyr Diachenko

Reverb , for its part , beam an emailnotifying customersof the breach .

Reverb is a medicine paraphernalia marketplacethat craft market place Etsy buy in 2019.Etsy claim it design “ to leverage its mart expertness to help Reverb further graduated table and grow . ”

We have reached out to Reverb for lucidness on the breach .

Image: HotforSecurity

Image: HotforSecurity

CompaniesETSY

Daily Newsletter

Get the best tech , science , and civilization tidings in your inbox daily .

News from the hereafter , delivered to your present .

You May Also Like

How To Watch French Open Live On A Free Channel

Argentina’s President Javier Milei (left) and Robert F. Kennedy Jr., holding a chainsaw in a photo posted to Kennedy’s X account on May 27. 2025.

William Duplessie

Starship Test 9

Lilo And Stitch 2025

CMF by Nothing Phone 2 Pro has an Essential Key that’s an AI button

Photo: Jae C. Hong

Doctor Who Omega

How To Watch French Open Live On A Free Channel

Argentina’s President Javier Milei (left) and Robert F. Kennedy Jr., holding a chainsaw in a photo posted to Kennedy’s X account on May 27. 2025.

William Duplessie

Starship Test 9

Roborock Saros Z70 Review

Polaroid Flip 09

Feno smart electric toothbrush

Govee Game Pixel Light 06