Casper Sleep Inc.
The Organization learned that a server containing customers past order details could be accessed from the internet between May 5, 2016 and April 11, 2018. The Organization investigated and found that the incident was caused by an error in the server configuration. On July 12, 2018, Casper discovered that certain customer information may have been obtained by unauthorized individuals. The impacted server contained information about orders customers placed between April 1, 2016 and May 5, 2016.