E-CommerceALERT.com is part of the Bennett Gold LLP web site network.
LINK TO: Bennett Gold LLP, Chartered Professional Accountants, home page.		 LINK TO: E-CommerceALERT.com Home Page.
CLICK to GO BACK to Main Page.

Research and retrieval of news articles by:
Bennett Gold LLP, Chartered Professional Accountants


SPECIAL NOTE TO ALL VISITORS:
Effective December 31 2012, articles are no longer being updated on this web site.
The site is now maintained as an historical archive, covering notable e-commerce news articles from the period 1999 to 2012.


CRACKERS COMPROMISE WESTERN UNION

The Follow Up Story

Source: Security Wire Digest

Posted on September 14, 2000

      A momentary security lapse opened one of the nation's most revered financial service companies to a cyberattack last week that compromised several thousand credit card accounts and tarnished its reputation in the market.

      Western Union, founded in 1871 on the principle of secure electronic money transfers, announced last week that a cracker successfully penetrated its Web site and stole more than 15,700 credit and debit card numbers from a database left unsecured while systems underwent routine maintenance.

      Some reports place the blame for the incident on crackers seeking to simply demonstrate weaknesses in corporate security systems. Nonetheless, Western Union took no chances. It advised all affected customers to change their credit card numbers and asked their banks to monitor accounts for suspicious activity.

      "We believe that is the most aggressive step we could take to protect our customers," Pete Ziverts, Western Union's vice president of corporate communications, stated in published reports. "The second step is to make sure it doesn't happen again."

      Western Union attributes the security lapse to human error. Technicians working on a system took security measures offline while they were working, but left the site connected to the Internet. An enterprising cracker penetrated the firewalls and found the credit card information database unprotected.

      The compromise of customer financial information aside, only time will tell if the 129-year-old company will suffer any loss in prestige or consumer confidence by the perception that Western Union is insecure.

      "It seems to me that Western Union, which is in the money order space, needs to be on the Internet, but it certainly doesn't want to lose its reputation due to poor security," said Bill Murray, an executive security consultant with Deloitte & Touche.

      Any company can suffer irrecoverable damage because of poor security, but more established companies with well-known brands have more to lose if their security is compromised.

      "If you allow your brand to be clobbered in the market, it takes a lot longer to repair it than protecting it in the first place," says Murray.



CLICK to GO BACK to Main Page.

E-Commerce Alerts are issued by Bennett Gold LLP, Chartered Professional Accountants as situations develop. Bookmark this site and check back often. Our e-mail address is: info@BennettGold.ca

In accordance with United States Code, Title 17, Section 107 and Article 10 of The Berne Convention on Literary and Artistic Works, the news clippings on this web site are made available without profit for research and educational purposes.

ALERT
ARCHIVES
Final Entries
2012
2011
2010
2009
2008
2007
2006
2005
2004
2003
2002
2001
2000
1999


LINK TO: Bennett Gold, Chartered Professional Accountants: A Licensed Provider of WebTrust Services.

WebTrust Is Your
Best Defense
Against
Privacy Breaches.

Get WebTrust
Working For
Your Site.