ChronicHosting.com Security Flaw
July 23rd, 2005
Not all web hosts take security seriously, but Chronic Hosting (www.chronichosting.com) does. I was logging into their support center to file a problem ticket regarding some silly little issue when I noticed a small flaw in their web based client that allowed users to see personal information. You can see a picture of the vulnerability here.
Obiviously this is a serious security issue that had to be addressed as soon as possible. A malicious user could obtain customer confidental data such as usernames, addresses and phone numbers. Not only that one could edit customer data and presumedly take over web hosting accounts. This was a serious threat to their business.
After discovering the vulnerability and talking with the owner of Chronic Hosting they had patched the issue in fifteen minutes! That’s quality service and a commitment to taking security seriously.
Entry Filed under: Web Application Security
1 Comment Add your own
1. Redscowl Bluesingsky | January 18th, 2006 at 7:16 pm
Well, if there was a security patch like that, what else could be wrong?
Leave a Comment
Some HTML allowed:
<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>
Trackback this post | Subscribe to the comments via RSS Feed