[privacy] Hacker Gets Indiana State Credit Card Info

["Fergie" <fergdawg () netzero net>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Via The (Ft. Wayne) Journal Gazette (props, Pogo Was Right).

[snip]

State technology officials sent letters Friday to 5,600 people and
businesses informing them that a hacker obtained thousands of credit card
numbers from the state Web site.

Although numbers are usually encrypted or shortened to the last four
digits, the Office of Technology conceded a technical error allowed the
full credit card numbers to remain on the system and be viewed by the
intruder.

“Like thousands of web sites, the state’s web site is constantly under
attack from hackers,” the letter said. “To repel these attacks, the
state has implemented the highest levels of security and submitted itself
to regular independent audits to ensure that data is safeguarded.

“Despite these efforts, the state’s web site recently experienced a
security breach.”

Chris Cotterill, director of the site, www.IN.gov, said the hacking
occurred in early January but wasn’t discovered until Jan. 25.

[snip]

More:
http://www.fortwayne.com/mld/journalgazette/16667910.htm

- - ferg

-----BEGIN PGP SIGNATURE-----
Version: PGP Desktop 9.5.3 (Build 5003)

wj8DBQFFzfWiq1pz9mNUZTMRAhs2AJ9LP6yuntt+7VrDD6RUldiFEAiOiwCg6ndK
xqhFZaSSCdGQNDJuYfNDuQk=
=JqNK
-----END PGP SIGNATURE-----


--
"Fergie", a.k.a. Paul Ferguson
 Engineering Architecture for the Internet
 fergdawg(at)netzero.net
 ferg's tech blog: http://fergdawg.blogspot.com/

_______________________________________________
privacy mailing list
privacy () whitestar linuxbox org
http://www.whitestar.linuxbox.org/mailman/listinfo/privacy