Get the most out of your email and SMS marketing with Drip » Free Trial
Welcome Guest | Sign In
ECTNews.com
Deliver winning CX every time
E-Commerce Times TechNewsWorld CRM Buyer LinuxInsider
Discussions

E-Commerce Times Talkback

 
ECT News Community   »   E-Commerce Times Talkback   »   Re: E-Commerce Sites Fail Security 101



Re: E-Commerce Sites Fail Security 101
Posted by: Paul A. Greenberg 2002-01-10 12:48:09
See Full Story

If online merchants expect longevity and prosperity, now is the time to find
vulnerabilities and repair them. After all, if an e-commerce novice gets burned, that
consumer's trust in online transactions will be irretrievably lost.
If there are four words e-commerce can always live
by those words are: Never Get Too Comfortable.


Re: E-Commerce Sites Fail Security 101
Posted by: devitry 2002-01-10 23:55:08 In reply to: Paul A. Greenberg
Hey everyone. I just wanted to clarify one thing about the c2it hole. It's a front end attack where there are three parties involved ( attacker, c2it.com, and a c2it user ). The attacker send a script to the user, which can then accesses their c2it account. The script, which runs on the c2it site, could then have transfered money or accessed that users account information.

The statement "More ambitious hackers could access entire lists of credit card numbers. " it a little overstated. The "entire list" is only the list of credit card numbers that the attacked user has on their account, not all the credit card numbers in the c2it system.

-dave

Jump to:
Should businesses and organizations require staff to provide proof of Covid-19 vaccination before physically coming to work?
Yes -- At this point it makes good sense and will help stop the spread of the virus.
No -- It sets a bad precedent against personal privacy and civil liberties.
I'm Not Sure -- There are valid arguments for and against vaccine requirements.