Extra, Extra, Read All About These 240,000 Credit Card Numbers
from the there's-a-hole-in-the-bucket dept
We wondered yesterday just how clueless newspaper owners really were, and two Massachusetts papers are doing their best to say "quite clueless indeed". It's got nothing to do with Google News, but the Boston Globe and the Worcester Telegram & Gazette -- both owned by The New York Times -- exposed the credit card data of up to 240,000 subscribers. What's so stunning here isn't the mere leak of the data, since that's becoming so common, but rather how it was leaked. The Worcester paper prints its delivery routing slips on internally recycled paper -- the paper it used last weekend happened to be some sort of internal reports with all the credit card numbers on them. The paper now says it's taken "immediate steps" to increase security, and it's set up a hotline for subscribers to call and see if their credit card data was compromised. Why is the burden on their subscribers? Shouldn't the papers be proactively letting people know their card numbers could be circulating? It's continually amazing how so many of these data leaks aren't the results of anything active, like hackers, but rather just products of sheer stupidity.
Thank you for reading this Techdirt post. With so many things competing for everyone’s attention these days, we really appreciate you giving us your time. We work hard every day to put quality content out there for our community.
Techdirt is one of the few remaining truly independent media outlets. We do not have a giant corporation behind us, and we rely heavily on our community to support us, in an age when advertisers are increasingly uninterested in sponsoring small, independent sites — especially a site like ours that is unwilling to pull punches in its reporting and analysis.
While other websites have resorted to paywalls, registration requirements, and increasingly annoying/intrusive advertising, we have always kept Techdirt open and available to anyone. But in order to continue doing so, we need your support. We offer a variety of ways for our readers to support us, from direct donations to special subscriptions and cool merchandise — and every little bit helps. Thank you.
–The Techdirt Team
Reader Comments
Subscribe: RSS
View by: Time | Thread
Just like Microsoft...
The Apocalypse will be started by some low-level person doing something really dumb.
[ link to this | view in chronology ]
i am amazed
Also, cardholder data should be encrypted in the database, never in plain text. The database servers should be behind several lines of defense.
Cardholder data should never be printed on paper. All internal communications regarding accounts should be done using information other than the card number such as a serial number in the database relating to the account. Printed or electronic information should never leave the company premises.
It makes me afraid to use my credit card to think that anywhere I use it may store my info in plain text on unsecure servers.
[ link to this | view in chronology ]
Re: i am amazed
[ link to this | view in chronology ]
Re: i am amazed
You freaking idiot who is scared to use your credit card cause someone might steal it.....
so what..... who cares....... your not gonna have to pay anything..........
if it appens enough to hurt the industry they will close their problamatic loopholes and security leaks.....
I for one won't worry about it in the least..... its their problem and they will pay for it.... not me....
The Poison Pen
[ link to this | view in chronology ]
Re: i am amazed
FYI, I still do use my credit cards. I was just saying that I think it is pretty lame that a store you shop at may store your info in plain text. I think they should store it encrypted or not at all.
[ link to this | view in chronology ]
Re: i am amazed
Every CC statement has info about contacting the company and states that phoning may not preserve your rights. I've had one instance of my card # being abused, with five fraudulent charges during one billing period. I mailed a letter to the company listing the fraudulent transactions, asking that the charges be reversed because they were fraudulent and that the company contact me if it needed any additional documentation from me. My understanding is that by law a CC company has to put on hold or reverse charges you say in writing are fraudulent until/unless the company can verify otherwise.
In less than a week all the charges had been reversed without any further contact, and I never had to spend another minute on the matter. It would have been better had it never happened, but approaching the problem the right way can keep the hassle to the minimum necessary.
[ link to this | view in chronology ]
Re: Poison Pen
It won't cost me anything??
Is your time not valuable to you?
Ever have to pay taxes on wages you did not make, cause your Social Security number was used by an illegal alien?
Ever wonder why you pay 12 to 23 percent intrest on credit cards from a bank? While banks will only give you 2 to 3 percent for using your money?
Are you a little clueless as to how oil companies had record breaking profits last year? Was it due to the fact that prices were rediculously high?
"its their problem".... your the "freaking idiot"
Love ya sweety
Clown Smash
[ link to this | view in chronology ]
Re: i am amazed
[ link to this | view in chronology ]
Re: i am amazed
[ link to this | view in chronology ]
Re: i am amazed
[ link to this | view in chronology ]
Damnit
[ link to this | view in chronology ]
Free Online Credit Score Calculator
It allows me to play around with the various options so that I can figure out what to do or say to up my credit score rating, very useful :)
Cheers !
Joanne.
[ link to this | view in chronology ]