Car shoppers' credit details exposed in bulk

Car shoppers' credit details exposed in bulk
Kevin Poulsen, SecurityFocus 2003-09-25

At least 1,000 automobile shoppers who submitted online credit applications to any of 150 different automotive dealerships around the U.S. had their personal and financial details exposed on a publicly-accessible website, according to a computer security consultant who stumbled across the privacy gaffe.

Car shoppers' credit details exposed in bulk 2003-09-26
Jake

Er, from what it said, it didn't take that much skill; someone found a link to a "hidden" page which gave out the credit card info.

Dealerskins reply in the final paragraph seems to say "We're going to get hacked anyway, so we might as well be nice to those hackers and make it easy for them. Oh,...

[ more ]