“E-commerce providers that make customer data available to attack over the internet may find themselves open to enforcement actions by the U.S. Federal Trade Commission, which is stepping up its scrutiny of online retailers. In the most recent case, pet supply retailer Petco disclosed that it is being investigated by the FTC after a security hole exposed 500,000 credit card numbers to the Internet.” The most amazing part of the Petco story is that it involved SQL injection, a well known and relatively easy to block exploit. From Netcraft.
URLs:
http://news.netcraft.com/archives/2003/12/10/us_regulators_probe_security_lapses_at_retailers.html
http://www.devarticles.com/index2.php?option=content&task=view&id=138&pop=1&page=0&hide_js=1
