BN.com: insecure about security?
Half a dozen security holes that could allow a malicious hacker easy access to sensitive customer data riddled the BarnesandNoble.com site as of early this week. Some of the holes have been quietly closed over the past two days, but others remain wide open.
The site's security problems don't surprise experts who believe that no website's security is ever completely bulletproof. What disturbs and frustrates them the most, however, is the company's reaction to security researcher Steve Manzuik's repeated attempts to warn the company of the problems.
[ Read more ]