ShitExpress

ShitExpress operates an anonymous fecal gifting service, enabling customers to send humor-themed packages containing simulated excrement to recipients. The platform specializes in facilitating prank deliveries, allowing users to include custom messages while maintaining sender anonymity. Its core offering centers on novelty items designed for comedic or inflammatory purposes, marketed primarily to individuals seeking unconventional ways to deliver personal messages. The service gained attention through its digital storefront, which processes orders and coordinates discreet shipments without disclosing the sender's identity.

A significant 2022 cybersecurity incident exposed vulnerabilities in the company's operations when an attacker exploited an SQL injection flaw in its web platform. The breach compromised approximately 29,000 orders, revealing customer email addresses and private messages intended for recipients. Forensic analysis indicated the intrusion originated from human error in a vulnerable script, which the organization claims to have patched promptly following detection. Despite assertions that personal data wasn't retained long-term, the leaked database contained sufficient detail to expose customers' inflammatory or humorous communications. The hacker publicly released the records on a forum without attempting extortion, highlighting operational security deficiencies in handling sensitive customer information. The company maintains its systems now securely store data while continuing to offer its niche gifting services.