Remember that the code the cross-sell company added doesn’t link in the normal sense but just continues with the session in an attempt to sell you some useless crap. By continuing the session, the application running (the cross-sell application, not the original on-line store) has access to the card data in the cookie. Most legitimate companies don’t think this through — the money is too good.
Slashdot | Cross-Selling Online Scams and Security Issues
Caveat Emptor - Use of Credit Cards On-Line « The 12 Angry Men Blog
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment