Site Hacked, 38,000 Card Numbers Stolen
Printed From: Just Flight Forum
Category: Just Chat
Forum Name: Just Chat - General Discussion
Forum Description: Forum for shootin' the breeze about subjects not relating to Flight Simulation or aviation
URL: http://forum.justflight.com/forum_posts.asp?TID=1366
Printed Date: 28 Apr 2024 at 12:28pm
Topic: Site Hacked, 38,000 Card Numbers Stolen
Posted By: VulcanB2
Subject: Site Hacked, 38,000 Card Numbers Stolen
Date Posted: 11 Jun 2008 at 10:08pm
http://news.bbc.co.uk/1/hi/technology/7446871.stm - http://news.bbc.co.uk/1/hi/technology/7446871.stm
That's not very useful! How can others check for the same vulnerability if they don't say what it was? "Security Through Obscurity" doesn't work, if that's what they're worried about. The fundamental problem was that card details were stored. They don't even say if the database was encrypted (using serious encryption technology). If it was, it suggests the decryption keys were compromised, which leads to the question: what were the decryption keys doing on the server? All this is pure conjecture though, as we don't know. Another major point: if this occurred in January, why are we only now finding out about it?
 Best regards, Vulcan. |
The exact method used to hack the Cotton Traders website is not known.