Ozon

In November 2018 the Russian e-commerce giant Ozon experienced a significant security breach affecting approximately 450000 user accounts. The incident became public knowledge several months later in mid-2019 when a database containing user credentials appeared on specialized forums. Investigation revealed that the company had been storing user passwords in plain text without encryption or hashing at the time of the compromise. This security failure allowed attackers to gain full access to user accounts and their associated digital identities. Following the exposure Ozon implemented mandatory password resets and transitioned to more secure cryptographic storage methods for user data.