Blippy is a social site that lets you see and discuss what everyone is buying. But it looks like Blippy is more than it should. Check out this link for example.
Blippy Customers Credit Cards Revealed
Here’s a sanitized view of the same (as Google should take those links away from from its index & cache pretty soon).
There are actual people’s names, the actual transactions with their full credit cards and its not just a few of them. There are pages of them. While this is a very bad PR for Blippy, this is indeed a very serious breach of security. And this all has happened to Blippy justa day after they raised $11 million in series A funding.
Its a horrendous mistake and it raises several questions against the already troubled company. The question here is not just how the credit cards got revealed on Google, but why are they even storing users credit cards in their database. Even at the worst case, they should have encrypted all such critical information in their database.
How secure are these web 2.0 companies? Are they really serious about your data?
If you are a Blippy user, please cancel your credit cards immediately. And be aware of what you are sharing in the internet. You for sure don’t want your social security numbers and credit cards public in the internet, do you?
