Quote from Stuff: Users of online retailer Mighty Ape noticed a glitch on its website on Thursday night that allowed users to see other users’ personal details.

Mighty Ape user Cody Cooper told Stuff he and his friend were separately browsing the website when it began logging them in as different customers.

“Every other page refresh it was logging us in as different customers. It logged me in as several different user accounts,” Cooper said.

“Not only is it concerning that I could potentially place an order on their account, but I could see their credit card details, home addresses, emails and full order history.”

The online retailer’s LiveChat then told the pair that the glitch had been fixed.

Other users shared their experiences on social media, relaying similar stories.

“I could see everything including name, address and there was a credit card linked. There was nothing stopping me from potentially placing an order,” one person said.

“I went on there and took off anything to do with payments and personal data,” said another.

Mighty Ape’s managing director, Robert McEwan, told Stuff the company was aware of the issue, saying it affected a limited number of users on Thursday evening and was the result of an internal technical issue – not a data breach.

McEwan said no credit card details had been compromised and that the issue – which he said “will not recur” – was fully resolved within a few hours.

“Any impacted customers will have all relevant concerns addressed by our team,” he said. “We take our customers’ privacy extremely seriously and resolved technical issues quickly, and are actively contacting impacted customers.”

Mighty Ape was purchased by Australian company Kogan.com for $127 million in 2020.

Link here (if its still available) here