Leddiretto.it

In November 2022 the Italian lighting retailer Leddiretto.it experienced a significant data breach. An unauthorized party gained access to the company database resulting in the exposure of personal information belonging to approximately 72000 customers. The compromised data included sensitive details such as email addresses, full names, IP addresses, dates of birth, and gender. Furthermore, user passwords were leaked in MD5 hash format without salt, making them highly vulnerable to cracking via rainbow tables or brute force attacks. The data was subsequently released into the public domain posing a risk of identity theft and credential stuffing for affected individuals.