Kasla.ru

In March 2024 the Russian online retailer Kasla specializing in mobile electronics suffered a significant data exposure. The incident occurred due to an unsecured database being left publicly accessible. Despite the vulnerability being identified the administration reportedly failed to secure the system for several months. The leaked SQL dump contains a table with information on approximately 42000 users. Compromised data includes sensitive personal details such as full names and contact information along with security credentials stored as bcrypt hashes. The breach highlights a severe lack of basic security configurations and slow incident response times from the platform owners.