Bazar365.com

Bazar365 an online grocery delivery platform based in Bangladesh suffered a significant data exposure due to a misconfigured database. The incident involved an unprotected MongoDB instance that was accessible to the public without any authentication. This security lapse allowed unauthorized actors to view and potentially download sensitive customer information. The exposed data included personal details of thousands of users and internal system logs tracking order histories. Cybersecurity researchers discovered the open server and reported that the vulnerability remained active for several days before being secured by the company technical team.