PetCo Plugs Credit Card Leak

PetCo Plugs Credit Card Leak
Kevin Poulsen, SecurityFocus 2003-06-30

Pet supply retailer PetCo.com plugged a hole in its online storefront over the weekend that left as many as 500,000 credit card numbers open to anyone able to construct a specially-crafted URL.

Expand all | Post comment

PetCo Plugs Credit Card Leak 2003-07-01
Anonymous (1 replies)

I'm curious... How is it that Jacks can dig into these corporate websites and discover vulnerabilities that reveal a trove of credit card numbers without the company taking legal action against him? I hear so often of well intentioned security enthusiasts that are threatened when they point out such weaknesses. In fact, as I have stumbled across a few, I've kept hush about such things (albeit minor in comparison) for fear that the company would come chase me down. Any thoughts?

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/articles/6194/20678#20678

PetCo Plugs Credit Card Leak 2003-07-01
Anonymous