Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security FullDisclosure
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: [Full-disclosure] Is the Bottom Line Impacted by Security Breaches?

from [Todd Towles] Network Security [Permanent Link]
Subject: RE: [Full-disclosure] Is the Bottom Line Impacted by Security Breaches?
Date: Wed, 28 Sep 2005 14:46:38 -0500 
Plus, it was shown recently that personal credit card fraud via ID theft
is smaller than victimless credit card fraud.

http://www.theregister.co.uk/2005/09/16/gartner_phantom_fraud/

It is a very good rundown on why the banks just really don't have a
reason to chase after them and stop them.

-Todd


-----Original Message-----
From: full-disclosure-bounces@lists.grok.org.uk 
[mailto:full-disclosure-bounces@lists.grok.org.uk] On Behalf 
Of Frank Knobbe
Sent: Wednesday, September 28, 2005 1:54 PM
To: ken@ftusecurity.com
Cc: full-disclosure@lists.grok.org.uk
Subject: Re: [Full-disclosure] Is the Bottom Line Impacted by 
Security Breaches?

On Wed, 2005-09-28 at 10:22 -0400, Kenneth F. Belva wrote:

In the paper I ask: "If 40 million customer credit card numbers are 
exposed in a security breach at the credit card processor 

CardSystems, 

why do a significant number of people not cancel their Visa and/or 
Mastercard?"


Simple. The credit card numbers are exposed every time they 
make a purchase as well. Now, it someone commits fraud with 
your name and card number (which a convenience store clerk 
can do himself... no high-profile server breach needed), then 
the customer is only liable for minimal damages. The risk and 
liability lies with the credit card company.

Perhaps you should ask:
"If 40 million customer social security numbers are exposed 
in a security breach at the credit card processor 
CardSystems, why do a significant number of people not 
request new social security numbers?"

After all, there is no limit on liability with fraud on those....

Regards,
Frank



_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Full-disclosure] Is the Bottom Line Impacted by Security Breaches?, Frank Knobbe
Next by Date:  Re: [Full-disclosure] Suggestion for IDS, Reto Inversini
Previous by Thread:  [Full-disclosure] Bypassing Personal Firewall (Zone Alarm Pro) Using DDE-IPC, Debasis Mohanty
Next by Thread:  Re: [Full-disclosure] Is the Bottom Line Impacted by Security Breaches?, Valdis . Kletnieks
Indexes:  [Date] [Thread] [Top] [All Lists]