RE: [Full-Disclosure] http://www.chase.com/ vulnerability
gauntlet_at_nym.hush.com
Date: 05/28/04
- Previous message: Srini: "[Full-Disclosure] Re: Bypassing "smart" IDSes with misdirected frames? (long and boring)"
- In reply to: Perry E. Metzger: "[Full-Disclosure] http://www.chase.com/ vulnerability"
- Next in thread: James Patterson Wicks: "RE: [Full-Disclosure] http://www.chase.com/ vulnerability"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: "'Perry E. Metzger'" <perry@piermont.com>, <full-disclosure@lists.netsys.com> Date: Fri, 28 May 2004 15:24:16 -0400
Many financial institutions do the same thing.
www.americanexpress.com:
Security is important to everyone!
Please be assured that, although the home page itself does not have an
"https" URL, the login component of this page is secure. When you enter your
User ID and password, your information is transmitted via a secure
environment, and once the login is complete, you will be redirected to our
secure area.
If you wish to speak further with a technical specialist, please feel free
to contact American Express Online Services at 1-800-297-1234, 24 hours/7
days. If you are outside the United States, please call collect at
1-336-393-1111.
---------------
Rob
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
- Previous message: Srini: "[Full-Disclosure] Re: Bypassing "smart" IDSes with misdirected frames? (long and boring)"
- In reply to: Perry E. Metzger: "[Full-Disclosure] http://www.chase.com/ vulnerability"
- Next in thread: James Patterson Wicks: "RE: [Full-Disclosure] http://www.chase.com/ vulnerability"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
