funsec mailing list archives
[privacy] Hacker Gets Indiana State Credit Card Info
From: "Fergie" <fergdawg () netzero net>
Date: Sat, 10 Feb 2007 16:41:12 GMT
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Via The (Ft. Wayne) Journal Gazette (props, Pogo Was Right). [snip] State technology officials sent letters Friday to 5,600 people and businesses informing them that a hacker obtained thousands of credit card numbers from the state Web site. Although numbers are usually encrypted or shortened to the last four digits, the Office of Technology conceded a technical error allowed the full credit card numbers to remain on the system and be viewed by the intruder. Like thousands of web sites, the states web site is constantly under attack from hackers, the letter said. To repel these attacks, the state has implemented the highest levels of security and submitted itself to regular independent audits to ensure that data is safeguarded. Despite these efforts, the states web site recently experienced a security breach. Chris Cotterill, director of the site, www.IN.gov, said the hacking occurred in early January but wasnt discovered until Jan. 25. [snip] More: http://www.fortwayne.com/mld/journalgazette/16667910.htm - - ferg -----BEGIN PGP SIGNATURE----- Version: PGP Desktop 9.5.3 (Build 5003) wj8DBQFFzfWiq1pz9mNUZTMRAhs2AJ9LP6yuntt+7VrDD6RUldiFEAiOiwCg6ndK xqhFZaSSCdGQNDJuYfNDuQk= =JqNK -----END PGP SIGNATURE----- -- "Fergie", a.k.a. Paul Ferguson Engineering Architecture for the Internet fergdawg(at)netzero.net ferg's tech blog: http://fergdawg.blogspot.com/
_______________________________________________ privacy mailing list privacy () whitestar linuxbox org http://www.whitestar.linuxbox.org/mailman/listinfo/privacy
Current thread:
- [privacy] Hacker Gets Indiana State Credit Card Info Fergie (Feb 10)