29 May 2017

Please Engage Brain

Archive for: June, 2011
Keith Appleyardavailable for hire - Bromley

Citi demonstrates lack of good Security practice - ditto BBC

16 June 2011  |  5783 views  |  1 comments | recommendations Recommends 0

As reported, this greatly surprises me - apparently placing the Credit Card number within the URL, and thus by changing the URL exposes other Credit Card details within having to go through the Access Validation routine. On the one hand you'd assume the system designers didn't 'actually' specify it to be this way, but that the programmer didn't ask...

TagsCardsSecurityGroupWhatever...
Previous 1 Next
members
29,243
Members
comments
17,200
Comments
blogs
11,267
Posts
bloggers 
1,167
Active bloggers

Top bloggers: 30 days

Most viewed Engaging
Carlo R.W. De Meijer
Carlo R.W. De Meije...

Independent financial services advisor

Victor Martin
Victor Martin

Currently working as chief marketing off...

Who is commenting on these posts

Ketharaman Swaminathan
John Candido
Maurizio Colleluori
João Bohner
Barbara Matthews
Melvin Haskins
Adedeji Olowe
Christian Ball
Tom Hay
Bimal Melwani
Chandrashekar Rao Kuthyar
Anthony Pickup