Site exposes security risk

Poor communications between an event management company and an ISP may have exposed credit card details of some customers.

Most at risk are delegates to an upcoming Canberra conference organised for the government-funded industry association Software Engineering Australia (SEA).

Some delegates to the conference have been registering by credit card via a Web site hosted by Canberra ISP Netspeed for events company Einsteinandedison.

It appears the Web payment process set up for the event was not secure, according to both Einsteinandedison CEO Elizabeth Bomben and Netspeed MD Brian Morris. But neither accepts responsibility for the situation.

Bomben said problems first surfaced in April after Netspeed was engaged to host a secure site.

"We would go in and sometimes it said the digital certificate had expired and at other times nothing appeared."

Discussions failed to resolve the issue and her events company got phone calls from users complaining the site did not appear to be secured, she said.

Netspeed told her several weeks ago the certificate for its server had expired and would not be renewed because Netspeed was switching to a new server, she said.

Netspeed's Morris agreed the conference registration page was not being called in a secure fashion. However, the difficulty was due to Web registration forms not being put in a secure mode, he said.

"It is up to the Web page designer to tell a page to go into a secure mode. They [the events company] has somebody else doing its HTML, we are only providing [the company] a secure server to link to."

Susan Dart, SEA national chief executive officer, said she was aware of the situation and was taking steps to rectify it.

"This is not acceptable. We had thought everything was secure and it has been a bit of a shock to find security did not exist any more."

Perhaps ironically, the Canberra conference is focused on what things Australia's IT industry does best and how it can push forward.

Einsteinandedison's Bomben said registrations for the SEA conference have been open for several weeks. She estimated only handful of people have used credit cards on the site.

Recommended

Keep up with the latest tech news, reviews and previews by subscribing to the Good Gear Guide newsletter.

Pete Young

Computerworld

Comments

Comments are now closed.

Most Popular Reviews

Follow Us

Best Deals on GoodGearGuide

Shopping.com

Latest News Articles

Resources

GGG Evaluation Team

Kathy Cassidy

STYLISTIC Q702

First impression on unpacking the Q702 test unit was the solid feel and clean, minimalist styling.

Anthony Grifoni

STYLISTIC Q572

For work use, Microsoft Word and Excel programs pre-installed on the device are adequate for preparing short documents.

Steph Mundell

LIFEBOOK UH574

The Fujitsu LifeBook UH574 allowed for great mobility without being obnoxiously heavy or clunky. Its twelve hours of battery life did not disappoint.

Andrew Mitsi

STYLISTIC Q702

The screen was particularly good. It is bright and visible from most angles, however heat is an issue, particularly around the Windows button on the front, and on the back where the battery housing is located.

Simon Harriott

STYLISTIC Q702

My first impression after unboxing the Q702 is that it is a nice looking unit. Styling is somewhat minimalist but very effective. The tablet part, once detached, has a nice weight, and no buttons or switches are located in awkward or intrusive positions.

Latest Jobs

Don’t have an account? Sign up here

Don't have an account? Sign up now

Forgot password?