25 September 2016

Please Engage Brain

Archive for: June, 2011
Keith Appleyardavailable for hire - Bromley

Citi demonstrates lack of good Security practice - ditto BBC

16 June 2011  |  5625 views  |  1 comments | recommendations Recommends 0

As reported, this greatly surprises me - apparently placing the Credit Card number within the URL, and thus by changing the URL exposes other Credit Card details within having to go through the Access Validation routine. On the one hand you'd assume the system designers didn't 'actually' specify it to be this way, but that the programmer didn't ask...

TagsCardsSecurityGroupWhatever...
Previous 1 Next
members
27,848
Members
comments
16,099
Comments
blogs
10,493
Posts
bloggers 
1,130
Active bloggers

Top bloggers: 30 days

Most viewed Engaging
Carlo R.W. De Meijer
Carlo R.W. De Meije...

Independent financial services advisor

Vicente Quesada
Vicente Quesada

Entrepreneur. Investor. Professor. Trans...

Who is commenting on these posts

Ketharaman Swaminathan
João Bohner
Chris Gledhill
Xavier Barrier
Jeremy Stevens
Edward Leong
Hardeep Singh
Stephen Lindsay
Anne Plested
Ahsan Quadri
Melvin Haskins
John Bertrand