This forum is in read-only mode for archive purposes, please use our new forum at https://community.justflight.com
Forum Home Forum Home > Just Chat > Just Chat - General Discussion
  New Posts New Posts RSS Feed - Site Hacked, 38,000 Card Numbers Stolen
  FAQ FAQ  Forum Search   Events   Register Register  Login Login

Site Hacked, 38,000 Card Numbers Stolen

 Post Reply Post Reply
Author
Message
VulcanB2 View Drop Down
Chief Pilot
Chief Pilot
Avatar

Joined: 02 Apr 2008
Points: 13365
Post Options Post Options   Thanks (0) Thanks(0)   Quote VulcanB2 Quote  Post ReplyReply Direct Link To This Post Topic: Site Hacked, 38,000 Card Numbers Stolen
    Posted: 11 Jun 2008 at 10:08pm
http://news.bbc.co.uk/1/hi/technology/7446871.stm

Quote The exact method used to hack the Cotton Traders website is not known.

That's not very useful! How can others check for the same vulnerability if they don't say what it was?

"Security Through Obscurity" doesn't work, if that's what they're worried about.

The fundamental problem was that card details were stored. They don't even say if the database was encrypted (using serious encryption technology). If it was, it suggests the decryption keys were compromised, which leads to the question: what were the decryption keys doing on the server? All this is pure conjecture though, as we don't know.

Another major point: if this occurred in January, why are we only now finding out about it?

ABBNLAu0Mb/kl6WxuVAkBW1hVLdkB3ejo6jEQcPKE6bWkFlOQtZpN+1kJaFz1DFHvrdgmYMbWWoP0icG5+xcxRgiMHaECh6V83pg++uN1emg8kwHGrUvf3NNV71ETY3v

Wink

Best regards,
Vulcan.
Back to Top
 Post Reply Post Reply
  Share Topic   

Forum Jump Forum Permissions View Drop Down