VapePartsMart

In June 2022 the online retailer VapePartsMart suffered a significant data breach resulting in the exposure of sensitive customer information. The security incident involved an unauthorized access to the WordPress database which compromised the personal details of approximately 140000 users. The leaked data included full names and usernames along with email and physical addresses. Additionally technical identifiers such as IP addresses and phone numbers were exposed. Security researchers noted that passwords were stored using the outdated MD5 hashing algorithm making them vulnerable to cracking attempts. The breach highlights common security risks associated with legacy CMS configurations and weak cryptographic practices in the ecommerce sector.