A website bug was responsible for exposing millions of email addresses belonging to customers of LifeLock, an identity protection service acquired by Symantec in 2016 for $2.3 billion.
Source: Identity Theft Protection Service Accidentally Exposes Identities – Nextgov