Security Incidents mailing list archives

Previous By Date Next
Previous By Thread Next

Re: *MAJOR SECURITY BREACH AT CCBILL**

From: Dayne Jordan <djordan () completeweb net>
Date: Wed, 19 Dec 2001 14:37:19 -0500
Because they occasionally go in and update their software used
to clear the credit cards... repair password files of authorized
users of protected areas on the customers website, etc etc.

D.
========

"NESTING, DAVID M (SBCSI)" wrote:


Out of curiosity, why does CCBILL need usernames and passwords on their
customers' systems?

-----Original Message-----
From: Dayne Jordan [mailto:djordan () completeweb net]
Sent: Wednesday, December 19, 2001 3:15 AM
To: incidents () securityfocus com
Subject: *MAJOR SECURITY BREACH AT CCBILL**

It appears that perhaps tens of thousands of username/passwords for valid
shell logins ALL ACROSS THE NET may have been compromised at CCBILL,


----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management 
and tracking system please see: http://aris.securityfocus.com
Previous By Date Next
Previous By Thread Next

Current thread: