E-commerce Security Threats Are Legion — eCommerce-Guide.com

You are in the: Small Business Computing Channel

ť ECommerce-Guide | Small Business Computing | Webopedia | WinPlanet

News, reviews and practical solutions for your online business

Selling on eBay

Search
ECommerce-Guide

Search internet.com

Become a Partner

Free Newsletters

ECommerce-Guide Daily

Small Business Computing

WinPlanet

Webopedia

E-mail Offers

Newsletter Address Changes

internet.commerce

Be a Commerce Partner

internet.com

IT
Developer
Internet News
Small Business
Personal Technology

Search internet.com
Advertise
Corporate Info
Newsletters
Tech Jobs
E-mail Offers

You are in: ECommerce-Guide > News > Trends

ECommerce-Guide Essentials

eBiz FAQ
Everything you need to know to start your own successful e-business.

Selling on eBay
How to make money in the online marketplace.

PayPal Payments and More
What's new in secure payments for your online store.

Shopping Cart Software
Solutions to close, process and track your online sales.

Related Articles
•An Ounce of Prevention

ecommerce-guide news and trends

E-commerce Security Threats Are Legion
November 15, 1999

"This is like walking down the street and finding a black Hefty bag filled with 300 credit cards, all valid. Names, addresses, phone numbers, credit card numbers, email addresses -- it was all there. This is a nightmare."
- Joe Harris'' recent comments about the shopping card vulnerabilities he discovered and reported to the Bugtraq security mailing list.

In last week''s Internetnews.com report Shopping Carts Expose Order Data, Brian McWilliams underscores how vulnerable e-commerce sites truly are and emphasizes the need for experienced professionals to help create and manage any serious undertakings in the e-commerce realm.

In case you missed the report, Joe Harris, a senior technical support professional at Blarg Online Services, discovered that improperly configured shopping cart software will create a world-readable log file of transaction data that resides in a directory accessible via the public Internet.

Upon further investigation, Harris found vulnerabilities in shopping cart systems from:

Extropia (WebStore)
Order Form (a shareware system)
EZMall 2000 (Seaside Enterprises)
QuickStore (from QuickStore software)
PDG Shopping Cart (PDGSoft)( Click here to read PDG''s response to the security vulnerabilities)
SoftCart (Mercantec)

"All of these carts could have been secured by following the instructions that came with the CGI. The reason I found all of these is because the people did not follow those guidelines." said Harris.

Go to page: 1 2 3 4 5 6 Next

Tools:

Add ecommerce-guide.com to your favorites

Add ecommerce-guide.com to your browser search box
IE 7 | Firefox 2.0 | Firefox 1.5.x
Receive news via our XML/RSS feed

The Network for Technology Professionals

About Internet.com

Legal Notices, Licensing, Permissions, Privacy Policy.
Advertise | Newsletters | E-mail Offers

Whitepapers and eBooks

Microsoft Personalized Whitepapers and Resources for You
Article: Why Migrating from MySQL to SQL Server 2008 Makes Sense
Articles: Build a More Agile Business with IBM
Articles: IBM Offers Enhanced Measurement and Management for Energy Usage
Microsoft Article: Windows 7 Features Your Clients Will Need on Day One

Articles: IBM Helps Transformation to an Information-Based Enterprise
Microsoft Articles: Visual Studio 2010
Adobe Article: Java Developers Finding a Home at Adobe Flex
MORE WHITEPAPERS, EBOOKS, AND ARTICLES

Webcasts

Webcast: Connecting PHP to Microsoft Technologies
Video: Windows Azure Debugging Tips

MORE WEBCASTS, PODCASTS, AND VIDEOS

Downloads and eKits

Ready. Set. Windows 7.
HP PartnerONE | SolutionsINFINITE Visit us at hp.com/partners/us
Microsoft Free Trials: Windows Server 2008 R2, Exchange Server 2010 and Windows 7
Get the Windows 7 SDK

Free Trial: Red Gate SQL Backup Pro 6
Iron Speed Designer Application Generator
MORE DOWNLOADS, EKITS, AND FREE TRIALS

Tutorials and Demos

Learn Unified Communications
BlackBerry Application Development Resources
Learn SQL Server 2008
Learn Windows Server 2008 R2
Internet.com Hot List: Get the Inside Scoop on IT and Developer Products

Learn Forefront
Learn System Center
All About Botnets
Learn SharePoint
MORE TUTORIALS, DEMOS AND STEP-BY-STEP GUIDES