LEGO Australia has warned 1591 customers that payments for an online membership were sent unencrypted.
The bungle was due to “human error”, the company told affected customers earlier this month. Unencrypted traffic was at risk of interception.
The Sydney Morning Herald reported transactions made between March 27 and May 5 were at risk.
Of those affected, 409 people had only entered some personal details but not credit card data.
The company has informed the Federal Privacy Commissioner.
Copyright © SC Magazine, Australia
Processing registration... Please wait.
This process can take up to a minute to complete.
A confirmation email has been sent to your email address - SUPPLIED GOES EMAIL HERE. Please click on the link in the email to verify your email address. You need to verify your email before you can start posting.
If you do not receive your confirmation email within the next few minutes, it may be because the email has been captured by a junk mail filter. Please ensure you add the domain @itnews.com.au to your white-listed senders.