Re: [full-disclosure] Credit Card Numbers

Full Version: Re: [full-disclosure] Credit Card Numbers

GovernmentSecurity.org > General GSO > Exploit & Vulnerability Mailing List Archives

GSecur

Jul 23 2003, 04:05 PM

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Myers, Marvin wrote:
| Maybe it is only me, but does anyone else notice a big jump in the
| number of merchants that are printing the entire credit card number
| and expiration date on receipts? Over the past 6 months I have had to
| educate about a dozen local merchants about the possible abuse
| scenarios that exist with this type of information leakage. If there
| Is not already some sort of law governing this policy, there should be.
|
|
| Marvin R. Myers
|

This may not be exactly what you're looking for, but the Gramm-Leach-Bliley Act has some protections for consumer credit card
information:

http://thomas.loc.gov/cgi-bin/bdquery/z?d106:SN00900:|

Thanks,
Jeff

- --
Jeff Bollinger, CISSP
University of North Carolina
IT Security Analyst
105 Abernethy Hall
mailto: jeff @unc dot edu
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQE/F/W8voVlxVBmgsURAgxJAJ9kbu8KeQH8Jg4gJH347OCfN9yzHgCZAdON
nLiywjVil5HeaxA28Rd92d8=
=UscJ
-----END PGP SIGNATURE-----

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.