Home Archive RSS/XML Subscribe Shop

Re: [ISN] Too much security is holding back ecommerce

From: <Kitetoa_at_Kitetoa.com>
Date: Fri 02 Mar 2001 - 03:24:14 CST
Hello, Jay,

You wish to see a "top 40 blue chip companies" that have a low regard of
security?

Easy...

Kitetoa are the guys who made this happen:  "Last August, Bull had to mount
an
internal investigation after confidential customer data was left on a French
Web server in plain view sans password or cryptographic protection.
Customers reportedly affected included Royal Air Force, Barclays and France
Telecom." which you could read in the Register's paper.

I mean... we are the ones who found this unprotected server.

And published the story here:

http://www.kitetoa.com/Pages/Textes/Les_Dossiers/Admins/Ze-mega-Kite-Teuf/bu
ll.htm

This month we found the SAM file with a simple web browser for the
www.bull.co.uk web server...

The story is here:

http://www.kitetoa.com/Pages/Textes/Les_Dossiers/Admins/Admin6/info-hack-bul
l.co.uk.htm

A paper has been writen in ZdnetUK (in english) about this one. You'll find
it here:
http://www.zdnet.co.uk/news/2001/7/ns-21093.html


About Evidian, you need to see these screenshots:
http://www.kitetoa.com/Images/Bull/bull-evidian-publisher1.jpg
http://www.kitetoa.com/Images/Bull/bull-evidian-webpublisher-services1.jpg


For the "top I_can't_even_count_anymore blue chips" that have a low regard
of security, please go to this url (most of it is in french but I'm sure
you'll understand everything looking at the screenshots- click on the links
in the papers):

http://www.kitetoa.com/Pages/Textes/Les_Dossiers/Admins/Admin3/r3capitu1atif
fadminszhtm.htm

Best,
K.

-----Message d'origine-----
De : Jay D. Dyson <jdyson@TREACHERY.NET>
À : ISN@SECURITYFOCUS.COM <ISN@SECURITYFOCUS.COM>
Date : vendredi 2 mars 2001 08:26
Objet : Re: [ISN] Too much security is holding back ecommerce



>        I for one would very much like to see the list of those "top 40
>blue chip companies" that have such a low regard for security.  I can
>guarantee you that I'll never do business with them again.  I see no
>reason to put my personal credit at risk for their own insipid want of
>convenience.
>
>- -Jay
ISN".

ISN is hosted by SecurityFocus.com
---
To unsubscribe email LISTSERV@SecurityFocus.com with a message body of
"SIGNOFF ISN".
Received on Sat Mar 3 04:25 CST 2001
Google
 
Web www.infosecnews.org
© Copyright 2007 InfoSec News
Home Archive RSS/XML Subscribe Shop Privacy