[Owasp-southafrica] DataPro Response to credit card information including hacked site

[Lindsay van Eden]

Well, I received a call from Justin at DataPro, whom was more concerned that
I was contacting him in my official capacity from ABSA than the actual issue
at hand.

He very quickly turned around and blamed their client for submitting the
information, which should  never have been setup in that way, but neglected
to make mention of the fact that their own website had been hacked.

Oh well, this is why credit card fraud is and will remain to be such an
issue in this country.

Lindsay van Eden
GRCB Information Security
Barclays PLC ­ ZA Regional Data Centre

Direct:  +27 11 772 7172
mailto:  Lindsay.vaneden at absa.co.za
mailto:  Lindsay.vaneden at barclays.com
mailto:  GRCBZARegionalDataCentreInformationSecurity at Barclays.com


OWASP South Africa
https://www.owasp.org/index.php/South_Africa





___________________________________________________________

Important Notice: 

Absa is an Authorised Financial Services Provider and Registered Credit Provider, 
registration number: NCRCP7.

This e-mail and any files transmitted with it are confidential and intended for the use of 
the individual or entity to whom they are addressed.

Please note that there are terms and conditions and some important restrictions, 
qualifications and disclaimers ("the Disclaimer") that apply to this email. To read this 
click on the following address or copy into your Internet browser: 

http://www.absa.co.za/disclaimer

The Disclaimer forms part of the content of this email in terms of 
section 11 of the Electronic Communications and Transactions 
Act, 25 of 2002. 

If you are unable to access the Disclaimer, send a blank e-mail 
to disclaimer at absa.co.za and we will send you a copy of the 
Disclaimer.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-southafrica/attachments/20080822/9033d0ba/attachment.html