iEntry 10th Anniversary RSS Archive

IT Management Begins With Security
SecurityProNews > News > Security News > Idiot Watch: Porn Billing Blows Your Wad
Search:
[ news_security_news ]

Idiot Watch: Porn Billing Blows Your Wad



John Stith
Staff Writer
2006-03-09

SecurityProNews: Insider Reports Insider Reports RSS Feed


Online payment service iBill got hit with a money shot when the company managed to get hacked, having some 17 million names stolen. The names have already been circulating around the fraudster/spammer markets.

According to an article in Wired News, the stolen data included names, phone numbers, addresses, email addresses and IP addresses but that's not all. There were also users names and passwords, credit card types and purchase amounts. Apparently, the numbers themselves didn't make it out.

The database included transactions covering a period between 1998 and 2003. iBill is best known as billing agency for the online adult entertainment industry, which is vast. iBill while waning as of late, was one of the preeminent billing services in the online porn business.

The Secure Science security software company put this whole thing together with an assist from Sunbelt. They and both commented for Wired that this appears to be an inside job. According to their story, the files were generated by exporting and SQL database into a CSV format.

According to Wire, Sunbelt's Adam Thomas figured an employee or other insider walked out with the info and sold it on the black market.

While there more details to the story like neither iBill nor the FBI elected to notify customers of the breach, it's cases like this that help define the Idiot Watch. Companies are careless with their info, they don't make sure it's secure. And while this is no way to be 100% secure, allowing employees to walk out with the info isn't exactly a good idea either.

The problem is, with these records going back to 1998, 8 years ago, many may have forgotten about all this and won't know to look or it could be some other change in someone's behavior, etc. One can be assured though, none of the customers expected their information to show up on the internet in a plain brown wrapper.

Once again though, this shows information must be encrypted and companies, regardless of their situation, have a responsibility to protect that data or get rid of it. If they can't protect it, then they need to destroy it.


Tag:

Get all the updates - click this link: Add to | DiggThis| Yahoo My Web





About the Author:
John is a staff writer for SecurityProNews covering cyber security.

More news_security_news Articles

SecurityProNews: Insider Reports Insider Reports RSS Feed

Get Your Site Submitted for Free in the World's Largest B2B Directory!

Email Address:
* URL:
*
*Indicates Mandatory Field

Terms & Conditions

iEntry Featured Services: Jayde Member Services | Forums | Freeware | Advertise with Us

Contact Us | Advertise | Newsletter Archive | Sitemap | Submit an Article | News Feeds
SecurityProNews is an iEntry, Inc.® publication - $line) { echo $line ; } ?> All Rights Reserved | Privacy Policy and Legal		 Join the WebProWorld Forums: Click Here
Virus Warnings

Subscribe to
SecurityProNews FREE!


[ more newsletters ]

Featured On:
article resources
Search Articles:
[advanced search]

WebProWorld.com
Get in-touch with industry experts and leaders
Post your site for review by expert and peers
Ask Security, IT, Development and Design questions

Free Membership: Join Now!

Visit WebProWorld.com

Titan Quest Forum
The #1 Titan Quest forum
Halo 3 Forum
The best Halo, Halo 2, Halo 3 forum
Nintendo Wii
Nintendo Wii news and views
Mac Software
The best in OS X freeware
Graphics Forum
Your source for graphic tutorials
SecurityProNews.com | Breaking eBusiness News Get Your IT Questions Answered - Click Here SecurityProNews News Feeds