WebApp Sec mailing list archives
Web sites keep making the same mistakes over and over again
From: "Richard M. Smith" <rms () computerbytesman com>
Date: Wed, 23 Feb 2005 09:57:25 -0500
http://www.thinkcomputer.com/corporate/news/pressreleases.html?id=18 Think Finds Flaw Revealing Up To 100,000 Social Security Numbers BOSTON, MA -- Today -- Think Computer Corporation has released another security-related White Paper detailing how anywhere from 25,000 to 100,000 Social Security numbers may have been accessible to the public for several years. The discovery of the flaw is particularly timely given the recent controversy surrounding similar problems at ChoicePoint, Inc., as well as changes in California state law that require companies to notify California residents whose Social Security numbers may have been compromised. Though PayMaxx, Inc., the company responsible for the problem, was contacted repeatedly and urged to remedy the problem, a representative responded by saying, "we already cooperate with a significantly experienced testing agency and have been tested several times for security issues." Since PayMaxx, Inc. provides payroll services to its clients, salary data and home addresses were also exposed. The paper is available at: http://www.thinkcomputer.com/corporate/news/identitycrisis.pdf
Current thread:
- Web sites keep making the same mistakes over and over again Richard M. Smith (Feb 23)