PetCo Plugs Credit Card Leak

PetCo Plugs Credit Card Leak
Kevin Poulsen, SecurityFocus 2003-06-30

Pet supply retailer PetCo.com plugged a hole in its online storefront over the weekend that left as many as 500,000 credit card numbers open to anyone able to construct a specially-crafted URL.

Colapse all | Post comment

PetCo Plugs Credit Card Leak 2003-07-01
Anonymous (1 replies)

I'm curious... How is it that Jacks can dig into these corporate websites and discover vulnerabilities that reveal a trove of credit card numbers without the company taking legal action against him? I hear so often of well intentioned security enthusiasts that are threatened when they point out su...

[ more ] [ reply ]

PetCo Plugs Credit Card Leak 2003-07-01
Anonymous

When you find a hole you can possibiliy check what information has been at risk, but you should not fetch the information. Then you send as soon as possible a mail to them. Be sure to check the mail is really relevant....

[ more ] [ reply ]

PetCo Plugs Credit Card Leak 2003-07-01
Anonymous

Good point!

It kind of does not seem fair ;-( Maybe they are the first company to apperiate it didnt get into the hands of somebody far more malicious!

I love the way the petco site publishes all there server information, probably a good idea to keep that abit hush aswell huh :) ...

[ more ] [ reply ]