BioFarm.ru

In February 2024 the Russian pharmaceutical e-commerce platform BioFarm experienced a significant data security incident. Two main database tables were exposed containing approximately 112000 order records and over 40000 user accounts. The breach included sensitive personal information such as full names email addresses mobile phone numbers physical delivery addresses and IP addresses. Furthermore passwords stored as MD5 hashes with salt were leaked posing a risk of credential cracking. The incident highlights vulnerabilities in online retail security within the healthcare and supplement sector.