archives  If you want an RSS feed try this xml rss V0.91 feed

Friday, July 04, 2003

Online Pet Shop : I smell a rat

petco logoPetCo.com on-line pet store was compromised by a 20 year old 'white hat' hacker who demonstrated that their ecommerce web site was vulnerable to a SQL Injection attack and left 500,000 credit card details open to compromise. This is the same kind of standard of trust and duty of care that caused the Federal Trade Commission to issue such a punitive ruling against Guess the fashion and clothing retailer last month. Related Links Security Focus article by Kevin Poulsen PetCo ecommnet's answer to minimising ecommerce database vulnerabilities.

posted by Robert Campbell 11:43 AM


Powered by Blogger Pro™