Migliorshop

The organisation operates as an Italian e‑commerce platform provider that supplies online pharmacies with a content management system for building and managing their websites. Its core service enables pharmacy retailers to display product catalogues, process orders and handle customer interactions through a hosted solution. Based in Italy, the company focuses on the pharmaceutical e‑commerce niche, offering tools that integrate with payment gateways and shipping modules. The platform is designed to support multiple pharmacy websites that share the same underlying infrastructure. By catering specifically to online drugstores, it positions itself as a specialised provider within the broader e‑commerce market.

In January 2023 the provider suffered a cybersecurity breach that exposed approximately 1.5 million customer records from the pharmacy sites using its platform. Attackers exploited multiple vulnerabilities in the company’s cloud infrastructure to gain unauthorised access to databases containing names, addresses, phone numbers, email addresses, MD5‑hashed passwords, tax identification numbers and shipping details. Prior to the incident, security researchers had warned the provider about critical weaknesses in its systems but received no response. Analysis of the compromised data showed that about 75 percent of the MD5‑hashed passwords could be successfully decrypted, indicating weak password protection practices. The breach also affected numerous pharmacy websites that relied on the provider’s shared content management system, amplifying the impact across the sector. Attackers demonstrated their access by defacing some of the hosted sites before any mitigation measures were observed. No information about the organisation’s ownership, parent company or subsidiary structure is disclosed in the available sources.