Level 4
Original article hosted on Medium was taken down. I've linked an archived copy of the article. It's a good read.

Brief introduction of the article is quoted below:
In June of 2019, SlickWraps Inc., a Kansas-based phone accessories company, sold precisely 10,744 orders through their eCommerce platform.
They collected $199,128.51 USD in revenue.
They accepted $1,314.80 USD in refunds.
They authorized 560 returns.
I have this data this because I am a cybersecurity analyst… and SlickWraps has abysmal cybersecurity.
Today, I will tell you the story of why their vulnerabilities are being exposed.
Before I begin, it is important to note that I have exhausted all other options.
I notified SlickWraps multiple times of their egregious security vulnerabilities which (still) exist on their Magento-based eCommerce platform.
They had no interest in accepting security advice from me. They simply blocked and ignored me.
Their time is now up.
Let’s start at the beginning.
Read more: I hacked SlickWraps. This is how. - Lynx0x00 - Medium