Car shoppers' credit details exposed in bulk

Car shoppers' credit details exposed in bulk
Kevin Poulsen, SecurityFocus 2003-09-25

At least 1,000 automobile shoppers who submitted online credit applications to any of 150 different automotive dealerships around the U.S. had their personal and financial details exposed on a publicly-accessible website, according to a computer security consultant who stumbled across the privacy gaffe.

Expand all | Post comment

Car shoppers' credit details exposed in bulk 2003-09-25
Anonymous (3 replies)

Car shoppers' credit details exposed in bulk 2003-09-26
Anonymous

Car shoppers' credit details exposed in bulk 2003-09-26
Jake (1 replies)

Car shoppers' credit details exposed in bulk 2003-09-28
Anonymous

Car shoppers' credit details exposed in bulk 2003-09-30
Anonymous

Those wascally hackers 2003-09-25
Anonymous (1 replies)

Those wascally hackers 2003-09-26
Anonymous

Car shoppers' credit details exposed in bulk 2003-09-25
Anonymous (2 replies)

Car shoppers' credit details exposed in bulk 2003-09-29
Anonymous

Car shoppers' credit details exposed in bulk 2003-09-30
Good Samaritan

Car shoppers' credit details exposed in bulk 2003-09-25
Anonymous (2 replies)

Car shoppers' credit details exposed in bulk 2003-09-26
Anonymous (1 replies)

Car shoppers' credit details exposed in bulk 2003-09-29
Roger

Car shoppers' credit details exposed in bulk 2003-09-29
Anonymous

Shame on you, Security Focus? 2003-09-26
Anonymous (2 replies)

Shame on you, Security Focus? 2003-09-28
Anonymous

Shame on you, Security Focus? 2003-09-29
Anonymous

Car shoppers' credit details exposed in bulk 2003-09-26
Grimm (1 replies)

Shame on their IT security? 2003-09-30
Anonymous

CIO = Buffoon 2003-09-26
Anonymous

Car shoppers' credit details exposed in bulk 2003-09-27
0ption

it all comes down to this...html is one of the easieast things to look at without proir understanding and get even a faint concept of whats going on. Also i veiw source on lots of sites just to see how "they" did it. Not to mention if you knew htlm pretty good and you knew that there are risks in putting your info into a site wouldnt *you* check to see if your info was handeld correctly. Thats exactly what this dude did. Props to him. Its not a crime to say FU to someone who is broadcasting your info for all who cared to see.

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/articles/7067/22626#22626

Car shoppers' credit details exposed in bulk 2003-10-01
BojanTrojan

Car shoppers' credit details exposed in bulk 2003-10-02
Anonymous