Re: [Full-disclosure] Is the Bottom Line Impacted by Security Breaches?
On Wed, 28 Sep 2005, Kenneth F. Belva wrote: > If the US population is 296 million and 40 million cardholders were > affected, that means that 13.51 percent of the population would be > affected (on the assumption that is only US citizens that hold a > Visa/Mastercard). Roughly one in every seven-point-four listmates ... ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Is the Bottom Line Impacted by Security Breaches?
Frank Knobbe wrote: > Perhaps you should ask: > "If 40 million customer social security numbers are exposed in a > security breach at the credit card processor CardSystems, why do a > significant number of people not request new social security numbers?" > > After all, there is no limit on liability with fraud on those > > Regards, > Frank Easy - you can't get one, so asking won't help. Unless, of course, you're under the protection of the Federal Witness Relocation program. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Is the Bottom Line Impacted by Security Breaches?
On Wed, 28 Sep 2005 14:46:38 CDT, Todd Towles said: > Plus, it was shown recently that personal credit card fraud via ID theft > is smaller than victimless credit card fraud. > > http://www.theregister.co.uk/2005/09/16/gartner_phantom_fraud/ The Google-provided ad at the top says: Official Check Fraud Our Solution Software Will Help Prevent Check Fraud-Free Whitepaper www.sourcetech.com Try as I might, I keep wanting to parse that as "Our software will guarantee that all of your whitepapers do in fact contain check frauds" :) pgp7Py4MwjK8P.pgp Description: PGP signature ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
RE: [Full-disclosure] Is the Bottom Line Impacted by Security Breaches?
Plus, it was shown recently that personal credit card fraud via ID theft is smaller than victimless credit card fraud. http://www.theregister.co.uk/2005/09/16/gartner_phantom_fraud/ It is a very good rundown on why the banks just really don't have a reason to chase after them and stop them. -Todd > -Original Message- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On Behalf > Of Frank Knobbe > Sent: Wednesday, September 28, 2005 1:54 PM > To: [EMAIL PROTECTED] > Cc: full-disclosure@lists.grok.org.uk > Subject: Re: [Full-disclosure] Is the Bottom Line Impacted by > Security Breaches? > > On Wed, 2005-09-28 at 10:22 -0400, Kenneth F. Belva wrote: > > In the paper I ask: "If 40 million customer credit card numbers are > > exposed in a security breach at the credit card processor > CardSystems, > > why do a significant number of people not cancel their Visa and/or > > Mastercard?" > > Simple. The credit card numbers are exposed every time they > make a purchase as well. Now, it someone commits fraud with > your name and card number (which a convenience store clerk > can do himself... no high-profile server breach needed), then > the customer is only liable for minimal damages. The risk and > liability lies with the credit card company. > > Perhaps you should ask: > "If 40 million customer social security numbers are exposed > in a security breach at the credit card processor > CardSystems, why do a significant number of people not > request new social security numbers?" > > After all, there is no limit on liability with fraud on those > > Regards, > Frank > > ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Is the Bottom Line Impacted by Security Breaches?
On Wed, 2005-09-28 at 10:22 -0400, Kenneth F. Belva wrote: > In the paper I ask: "If 40 million customer credit card numbers are > exposed in a security breach at the credit card processor CardSystems, why > do a significant number of people not cancel their Visa and/or > Mastercard?" Simple. The credit card numbers are exposed every time they make a purchase as well. Now, it someone commits fraud with your name and card number (which a convenience store clerk can do himself... no high-profile server breach needed), then the customer is only liable for minimal damages. The risk and liability lies with the credit card company. Perhaps you should ask: "If 40 million customer social security numbers are exposed in a security breach at the credit card processor CardSystems, why do a significant number of people not request new social security numbers?" After all, there is no limit on liability with fraud on those Regards, Frank signature.asc Description: This is a digitally signed message part ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Is the Bottom Line Impacted by Security Breaches?
In the paper I ask: "If 40 million customer credit card numbers are exposed in a security breach at the credit card processor CardSystems, why do a significant number of people not cancel their Visa and/or Mastercard?" Simple .. because Mastercard/Visa got to avoid having to notify their customers of the breach : http://www.consumeraffairs.com/news04/2005/cardsystems_court.html ~Mike. ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/