HSBC, Barclays and The Telegraph sites were found vulnerable to cyber fraud

June 2, 2009 - 8:52am | Fraud | News |

| More

HSBC, Barclays and The Telegraph sites were found vulnerable to cyber fraud

Last week was a week of numerous discoveries of high-profile web vulnerabilities, with discoveries of careless bugs on the sites of three British companies, says the Register. Hackers published the screenshots and other details of online banking sites for HSBC and Barclays Group and the website for The Telegraph that showed all three were susceptible to attacks that could compromise the security of people who visit the properties.

The paper says that the XXS, or cross-site scripting, errors on HSBC were still present on a variety of HSBC sites on Monday afternoon California time, some 48 hours after the XSSed blog first reported them. These flaws allowed hackers to inject javascript and content into HSBC websites simply by tricking a user into clicking on a specially manipulated web address.

According to the researchers Barclays had similar bugs but as of Monday afternoon, they appeared to have been fixed.

Another XSSed report of the HackersBlog revealed details of a SQL injection vulnerability in the main website for The Telegraph. As the Reg reports the vulnerability looked especially severe because it exposed sensitive system files to those who knew how to append database commands to the website address.

Subscribe to Ecommerce Journal RSS feed

Tags keywords: Barclays | cyber fraud | hacker | HSBC | SQL injection | The Telegraph | vulnerability | website bug

-3 points

Share this story

What are these?

Comments on HSBC, Barclays and The Telegraph sites were found vulnerable to cyber fraud

Post new comment

Similar Articles on Ecommerce Journal by sections

Applications get less vulnerable while websites don’t, reports IBM

HSBC profits halved in first semester of 2009

Breach Security Inc.: SQL injections compromised 500,000 sites in 2008

92 million Americans will turn to e-banking by 2011

Young people spend only minor part of their Internet surfing for social networks

PAYMENT SYSTEMS

Global Payments' HSBC Merchant Services declared preferred supplier to 7,000 SME

Global Payments buys the remaining stake in joint venture with HSBC

Faster Payments does not meet expectations set

HSBC and Citi accountholders to transfer funds through Alipay

HSBC and Citi will help Alibaba to expand Alipay online payment services

CEO at HSBC and Standard Chartered will send bonuses for charity?

How HSBC tries to avoid bailout from the government

HSBC fined £3 million for outrageously poor data protection

HSBC is delighted with its 20% stake in China’s BaCom

HSBC partnering with Authentify for secure online transactions

Barclays rolls out contactless debit card

Beware!!! New XSS bugs of American Express

Citi Portuguese credit card business will pass to Barclays

HSBC Middle East introduces Payroll Card Service for low wage earners

USAA found as excellent credit card provider, AmEx and Discover found as good

ECOMMERCE-CHECKED

McAfee study: online security fears affect online shopping

GoECart launches new interactive website to help merchants sell more online

Social bookmarking links

Game tops online shopping basket study

Wealthy Americans are shopping for a range of goods online, says survey

INVESTMENT INDUSTRY

Will Barclays sell its investment division?

HSBC wants to step into the European ETF market

Barclays's allowed to demand higher offers for its iShares

Prosourceads - your source for losing money

Barclays designates ex-Morgan Stanley banker as head of investment banking

HSBC, Barclays and The Telegraph sites were found vulnerable to cyber fraud

Will Adobe ever fix its XSS bug?

More than 8 million Adobe Flash files on websites are open to XSS attacks

The new way HSBC prevents its customers from online fraud

Three security firms warn Apple iOS grants full control of devices to hackers

Any Internet browser exposes your personal data: online privacy is a myth now!

10 places where you risk your PC of being Trojan infected

HSBC’s CEO claims recovery will be W-shaped

The financial world: online banking reviews, part 1

How to generate traffic to your adult site using CJs

BitDefender exposes private data and denies the fact

Kaspersky mistakes safe application for malware on HSBC site

Kaspersky breached by a simple device

Nine security flaws patched in Firefox 3.0.9

Google launches a new open source product to scan websites vulnerabilities

Director of Bastion Investments Inc., Interview with Jean-Michel Lenegre

More questions answered: exclusive interview with Cliff Hopkins of PayPal

D. Jackson from E-gold: “We suggest… Ponzi schemes.” Exclusive interview for ECJ

The Admin of Autosurf.bz, Interview With Peter Lopez

Jeremy Bonnardel: "We want ECU to be the easiest to use e-currency..."

More than half European websites are illegal

Heated arguments about Germany`s website block list

Lehman sues Barclays for ill-gotten gains from the purchase of its brokerage

Twitter is banned for 20 years from misleading users on security and privacy

Stolen credit data were available in blog

Affiliate with Ecommerce Journal
© 2006 eCommerce Journal, All materials copied should be followed by a back-link to http://ecommerce-journal.com/.
Ecommerce Journal - more about virtual economy|e-commerce news | articles | forex news | trading news | stocks news
| banks | payment systems | payment processors | plastic cards | e-currency exchange | investment | cyber fraud |
gambling news | poker news | casino news | betting news | news free-lance | jobs | CV | ecommerce law aspects |
economic news | trading news | e commerce interview | merchant news | e-commerce history | business news | internet news
Any violation will be reviewed as crime and will be reported to corresponding law authorities. News sitemap

Today's news in Figures

What browser is leading the market even so: Internet Explorer or Firefox?

Today's news in Payment systems

Heartland will pay $5 million to Discover: last settlement in a data breach case

PayPal is collaborating with Green Dot on special promotion

eBay further bejewels its PayPal service by discarding Google Checkout

First Data makes its card data tokenization solution public for all

Will Perfect Money allow loan operations? Obscure new options

Liberty Reserve reportedly follows e-gold’s fate with anti-money laundering

Today's news in Plastic cards

Facebook launches gift cards with loaded Credits

Today's news in Markets

Forex trends: euro strengthens on ECB interest rate announcement waiting

Buck behaves variously ahead of US economic reports & ECB interest rate decision

Forex trends: pound slips as UK house prices dropped more than expected

Forex trends:franc moves up after better-than-expected Swiss Q2 GDP data release

Metal markets: gold gains as global economic prospects remain shaky

Forex news:yen strengthens on weaker-than-expected Australian trade surplus data

Today's news in Investment industry

Sweet Earning VS Precious Fund: battle of investment projects

Today's news in Other themes

Microsoft to sell 3 licenses for Windows 7 Home Premium for just $149

Baidu will focus its mobile Internet investments on search business

Apple launches next generation operating systems: iOS 4.1 and iOS 4.2

Will Google manage to keep its workforce from evasion to Facebook?

PS3 hacking dongle is now available in the Web

Why Nokia plans to close down its Ovi Files service?

Microsoft finally puts its Windows Phone 7 into production