Credit card misuse

Posted on April 18, 2009

myDealz.de advises against credit card misuse. Customers especially of the shops ShopTo, Mzee and threadless should pay attention. They’re using bad SSL certificates¹ that make the data transfer of your sensible credit card data unsecure.

Unsecure ShopTo

A vulnerability in the OpenSSL package was found on May 13th, 2008 that generated predictable SSL and SSH keys. See Heise or Metasploit ↩

1 Comment

Archimedes

Posted April 20, 2009 at 8:16 PM

Those sites could be insecure, but I don’t believe they are big enough to harvest significant amounts of credit card data.
SSL Blacklist reports many of those sites. If you want to be safe, use something like the Perspectives-Firefox Addon.

Leave a Reply Cancel reply

█▀▀▄  ▄▀▀▄  ▄▀▀▄  █ ▄▀       ▀█▀  ▄▀▀▄       ▀█▀  ▄▀▀▄  █▀▀▄
█▀▀▄  █▄▄█  █     █▀          █   █  █        █   █  █  █▀▀
█▄▄▀  █  █  ▀▄▄▀  █ ▀▄        █   ▀▄▄▀        █   ▀▄▄▀  █

Impress
—
Contact
—
About
—