Car shoppers' credit details exposed in bulk

Car shoppers' credit details exposed in bulk
Kevin Poulsen, SecurityFocus 2003-09-25

At least 1,000 automobile shoppers who submitted online credit applications to any of 150 different automotive dealerships around the U.S. had their personal and financial details exposed on a publicly-accessible website, according to a computer security consultant who stumbled across the privacy gaffe.

Expand all | Post comment

Car shoppers' credit details exposed in bulk 2003-09-25
Anonymous (3 replies)

Car shoppers' credit details exposed in bulk 2003-09-26
Anonymous

Car shoppers' credit details exposed in bulk 2003-09-26
Jake (1 replies)

Er, from what it said, it didn't take that much skill; someone found a link to a "hidden" page which gave out the credit card info.

Dealerskins reply in the final paragraph seems to say "We're going to get hacked anyway, so we might as well be nice to those hackers and make it easy for them. Oh, and since you pointed out that we're a bunch of morons, we're going to sic the Feds on you".

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/articles/7067/22590#22590

Car shoppers' credit details exposed in bulk 2003-09-28
Anonymous

Car shoppers' credit details exposed in bulk 2003-09-30
Anonymous

Those wascally hackers 2003-09-25
Anonymous (1 replies)

Those wascally hackers 2003-09-26
Anonymous

Car shoppers' credit details exposed in bulk 2003-09-25
Anonymous (2 replies)

Car shoppers' credit details exposed in bulk 2003-09-29
Anonymous

Car shoppers' credit details exposed in bulk 2003-09-30
Good Samaritan

Car shoppers' credit details exposed in bulk 2003-09-25
Anonymous (2 replies)

Car shoppers' credit details exposed in bulk 2003-09-26
Anonymous (1 replies)

Car shoppers' credit details exposed in bulk 2003-09-29
Roger

Car shoppers' credit details exposed in bulk 2003-09-29
Anonymous

Shame on you, Security Focus? 2003-09-26
Anonymous (2 replies)