Re: [ISN] Over 5 million Visa/MasterCard accounts hacked into

From: InfoSec News (isnat_private)
Date: Fri Mar 14 2003 - 00:24:30 PST

  • Next message: InfoSec News: "[ISN] Hackers come out to play"

    Forwarded from: *Hobbit* <hobbitat_private>
    One thing that astounds me is the raised eyebrows in most banking
    institutions if a customer wants to trade in a credit card and get a
    different number every six months or so [which is probably still not
    frequent enough, considering our general thoughts on how often you
    should change passwords].  They expect everyone to be happy with
    essentially the same password for five years or so.  They really just
    don't get it yet.
    Something way better is needed, perhaps something that builds on the
    one-shot payment credential system Amex was starting to work on is
    needed -- the moral equivalent of s/key for your money.  The current
    "fraud protection" is a joke -- *someone* has to eat way too much lost
    balance every year, whether it's the consumer or not.
    ISN is currently hosted by
    To unsubscribe email majordomoat_private with 'unsubscribe isn'
    in the BODY of the mail.

    This archive was generated by hypermail 2b30 : Fri Mar 14 2003 - 02:31:32 PST