BreachExchange mailing list archives

Re: Geeks.com warns customers of possible data compromise despite security certification

From: security curmudgeon <jericho () attrition org>
Date: Tue, 8 Jan 2008 00:05:48 +0000 (UTC)


It's the Hacker Safe certification of course, which only protects against 
99% of hacker crime! =)

: January 07, 2008 (Computerworld) -- Just because a Web site has a 
: certification claiming that it is virtually hackproof, that doesn't 
: necessarily mean it's immune to all intrusions.
: 
: A case in point is Geeks.com, which on Friday began notifying an 
: unspecified number of customers that their personal and financial data 
: may have been compromised by an intrusion into the systems that run the 
: online technology retailer's Web site. Geeks.com, whose formal business 
: name is Genica Corp., said in a letter to customers that it discovered 
: the security breach on Dec. 5.
: 
: The compromised information included the names, addresses, telephone 
: numbers and Visa credit card numbers of an unspecified number of 
: customers who had shopped at Geeks.com, according to a copy of the 
: letter that was posted on The Consumerist blog 
: (http://consumerist.com/341408/geekscom-website-hacked-customer-data-stolen).

Hacker Safe - Tested Daily 07-Jan

https://www.scanalert.com/RatingVerify?ref=www.geeks.com

WEBSITE:        www.geeks.com
STATUS:         HACKER SAFE CERTIFICATION 07-JAN-2008

        This site is tested and certified daily to pass the HACKER SAFE 
Security Scan. To help address concerns about hacker access to 
confidential data, the "live" HACKER SAFE mark appears only when a web 
site meets the HACKER SAFE standard.

        Research indicates sites remotely scanned for known 
vulnerabilities on a daily basis, such as those earning HACKER SAFE 
certification, can prevent over 99% of hacker crime.

_______________________________________________
Dataloss Mailing List (dataloss () attrition org)
http://attrition.org/dataloss

Tenable Network Security offers data leakage and compliance monitoring
solutions for large and small networks. Scan your network and monitor your
traffic to find the data needing protection before it leaks out!
http://www.tenablesecurity.com/products/compliance.shtml

Current thread:

Geeks.com warns customers of possible data compromise despite security certification Mike Cokenour (Jan 07)
- Re: Geeks.com warns customers of possible data compromise despite security certification security curmudgeon (Jan 07)