On 8/7/2003, 7:27 pm, [EMAIL PROTECTED] wrote: >http://www.vnunet.com/News/1142875 > >Bugwatch: Know your security onions > >The biggest ever cyber-crime involved the theft of more than a million credit card numbers from online banks and retailers across 20 countries.
note that this is somewhat related to the tale about trust documents from the most recent risks-forum ... archived at: http://catless.ncl.ac.uk/Risks/22.83.html current weeks copy at: http://www.csl.sri.com/users/risko/risks.txt and an old discussion about security proporitional to risk: http://www.garlic.com/~lynn/2001h.html#61 One of the issues in x9.59 was to remove the account number as a vulnerability .... since it is in such widespread use .... that it would be practically impossible to cover the earth in sufficient layers of security and encryption to eliminate the vulnurabilities. some discussions about the difficulty of protection for paradigms involving widely distributed "shared-secrets" that happen to be extensively used in lots of business processes: http://www.garlic.com/~lynn/aadsm14.htm#33 An attack on paypal -- Internet trivia, 20th anv: http://www.garlic.com/~lynn/rfcietff.htm