Computer Glitch Blamed For Credit Card Breach

[security curmudgeon <jericho () attrition org>]

http://www.theindychannel.com/news/19506638/detail.html

Computer Glitch Blamed For Credit Card Breach
Ind. Woman Able To View More Than 100 Credit Card Statements

POSTED: 4:57 pm EDT May 19, 2009

INDIANAPOLIS -- A credit card company said Tuesday that a computer glitch 
caused more than a hundred people's statements to be posted online last 
week.

Constance Wilson, who lives in McCordsville, alerted CompuCredit after she 
logged in to pay her Aspire Visa card bill and instantly had access to 120 
other statements from people in Indiana and 31 other states, Call 6's 
Rafael Sanchez reported.

The Atlanta-based company said in a statement Tuesday that an internal 
investigation revealed a computer processing error made all of the 
statements into a single PDF, instead of 120 separate images, which 
allowed other users to see the statements.

[..]
_______________________________________________
Dataloss Mailing List (dataloss () datalossdb org)

Get business, compliance, IT and security staff on the same page with
CREDANT Technologies: The Shortcut Guide to Understanding Data Protection
from Four Critical Perspectives. The eBook begins with considerations
important to executives and business leaders.
http://www.credant.com/campaigns/ebook-chpt-one-web.php