Update 7: Countering what Patel claims in an interview with us, Akash Mahajan, in the comments to this post, points out a web server update log(screenshot), that indicates that the upgrade to Apache 2.2.17 for CCAvenue took place today. Patel had told us that the upgrade took place 5 months ago, and used that as a basis for claiming that the logs published are inaccurate, since they indicate that the server was Apache 2.2.14. As a counterpoint, OneMindsl says that netcraft updates that data only when requested, so this may not be indicative of upgrades, rather updates of upgrades (confusing, eh?). Update 6: FullDisclosure appears to have the original copy of the email that d3hydr8 sent. Thanks @dotmanish. Additionally, Anon, in the comments, says that "its still possible that someone accessed this backup somewhere in their file system on their server; and asks "if there was no hack, how is company confidential schema, employee data out in the public domain?" Note that Patel told us that it's not "real live database schema". Akash Mahajan points out "Sorry for nitpicking but, Passwords need to be hashed. Hashing means one way encryption. This means once hashed there is no way of getting the original value back. Ideally secure passwords are salted and hashed. This helps in avoiding a dictionary attack against hashed passwords." More questions in the comments from asdf Update 5: Hetal R on Twitter says that when he tried resetting a CCAvenue password, he got the plaintext password, and that is a security hole.…
Please subscribe to MediaNama. Don't share prints and PDFs.
You May Also Like
News
Google has released a Google Travel Trends Report which states that branded budget hotel search queries grew 179% year over year (YOY) in India, in...
Advert
135 job openings in over 60 companies are listed at our free Digital and Mobile Job Board: If you’re looking for a job, or...
News
By Aroon Deep and Aditya Chunduru You’re reading it here first: Twitter has complied with government requests to censor 52 tweets that mostly criticised...
News
Rajesh Kumar* doesn’t have many enemies in life. But, Uber, for which he drives a cab everyday, is starting to look like one, he...