Lenta

In February 2020 a significant data exposure affected the Russian hypermarket chain Lenta. The incident involved the discovery of a database containing personal information of approximately 90000 customers primarily located in the Moscow region. The data was found on an unprotected server accessible to the public. The compromised records contained sensitive personal identifiers that could be used for social engineering or unsolicited marketing. The company confirmed the incident and investigated the root cause which was linked to a technical misconfiguration by a third party contractor responsible for processing loyalty program data.