fringe: Google fixes Checkout bug that leaked customer data

[security curmudgeon <jericho () attrition org>]

http://news.cnet.com/8301-27080_3-57360657-245/google-fixes-checkout-bug-that-leaked-customer-data/

Google fixes Checkout bug that leaked customer data
Elinor Mills
by Elinor Mills January 17, 2012 4:12 PM PST

Google has fixed a bug in its Checkout software that exposed customer 
phone numbers to merchants in more than two dozen countries that charge a 
value-added tax--mostly in Europe and Asia.

"We had a bug in our Google Checkout merchant center and API. This meant 
that merchants selling digital goods may have seen buyer phone numbers 
which are normally provided only when users buy physical goods," a Google 
spokesman said in a statement.

"We fixed the problem in the merchant center and we're rolling out a fix 
to the API over the next few days," he said. "We apologize to those 
impacted by this issue and appreciate their patience as we work to resolve 
it."

[..]

_______________________________________________
Dataloss Mailing List (dataloss () datalossdb org)
Archived at http://seclists.org/dataloss/
Unsubscribe at http://datalossdb.org/mailing_list

Small, inexpensive USB drives pose huge threats to organizations left unprotected. 
Download Chapter 1 of CREDANT Technologies eBook
Data Protection to the Rescue
http://www.credant.com/campaigns/external_media_ebook/chapter1/lp/