29 August 2016

Please Engage Brain

Archive for: June, 2011
Keith Appleyardavailable for hire - Bromley

Citi demonstrates lack of good Security practice - ditto BBC

16 June 2011  |  5606 views  |  1 comments | recommendations Recommends 0

As reported, this greatly surprises me - apparently placing the Credit Card number within the URL, and thus by changing the URL exposes other Credit Card details within having to go through the Access Validation routine. On the one hand you'd assume the system designers didn't 'actually' specify it to be this way, but that the programmer didn't ask...

TagsCardsSecurityGroupWhatever...
Previous 1 Next
members
27,729
Members
comments
15,944
Comments
blogs
10,405
Posts
bloggers 
1,109
Active bloggers

Top bloggers: 30 days

Most viewed Engaging
Stanley Epstein
Stanley Epstein

Stanley is a Director and co-founder of...

Graham Seel
Graham Seel

Consultant to Fintech firms selling to,...

Jonathan Charley
Jonathan Charley

Jonathan is responsible for a team of in...

Carlo R.W. De Meijer
Carlo R.W. De Meije...

Independent financial services advisor

Alex Kreger
Alex Kreger

Banking & Fintech User Experience St...

Who is commenting on these posts

Ketharaman Swaminathan
Alex Kreger
Andy Hirst
Adrian Warr
Mitchell Muro
Stanley Epstein
Andrew Muir
Bob Lyddon
Vernon Forbes
Alexander Peschkoff
Matt Scott
João Bohner