How To Scream Unsecured
I was considering purchasing something from a foreign site today (I'm not going to name names), but then I noticed this link on the order form page:
- HTTP Strict Transport Security - September 17, 2010
- Secure Forms - January 27, 2006
- How to Resolve Java HTTPS Exceptions - November 21, 2018
- HackMyCF Adds SSL/TLS Scanner - May 27, 2015
- How to Get a Green SSL Certificate - November 18, 2009
Strange, if you click through they also give you the option to "Return to regular (not secure) mode"
Was there also a box checked by default titled "Please share my credit card information with 3rd parties"?
Just a little safety tip. Get a pre-paid cash card such as AMX Gift Card or their Traveler Check Card. or from Visa which has similar options. Only put in a small amount and use that card for your online purchases. That way if someone lifts your card, you'll only be out what was on the card, and there's a good chance the card will have safety measures as well and there's no danger of identity theft.
haha ... I've seen that around ... I can't remember where, but was it a flower shop? Anyhow, I remember my brother used the site and didn't notice that link and yes, his card got used in Britain - but he was lucky and the credit card company reembursed him.
No it wasn't a flower shop, it was a domain registrar. I wouldn't order from an overseas flower shop anyways because they keep spamming my blog comments.
On the topic of going that "extra step". I generally use Discover Card's "Secure Online Account Numbers". These are one time use numbers for use online. That way if anyone get's ahold of the CC number it doesn't much matter. Though I still would never use a site without a secure server.
- ColdFusion returning empty response with server-error: true
- Careful applying CF11u16, CF2016u8, CF2018u2
- Sessions don't work in Chrome but do in IE
- csrfVerifyToken does not invalidate the token
- The cf_sql_ is optional in cfqueryparam
- Cookie Expires / Max-Age 1969-12-31T23:59:59.000Z
- Burst Throttling on AWS API Gateway Explained
- How to Resolve Java HTTPS Exceptions