AusPost Click and Send security glitch could affect consumer trust: IDC

Customer financial details were not compromised, says AusPost.

Hamish Barwick (Computerworld)
03 October, 2012 08:43
Comments

While Australia Post has moved to reassure customers that their financial details were not compromised due to a security glitch with its online service Click and Send, a security expert said the incident could affect consumer confidence in the merchant.

According to media reports, the glitch allowed users to see other customers’ details by altering a shipping identification number that appeared in the URL of a transaction. Click and Send was designed for online postal documentation -- such as preparing items sold on auction site eBay for delivery.

IDC Australia senior market analyst Vern-Harn Hue told Computerworld Australia that the glitch could potentially be a “big blow” for Australia Post as it seeks to position itself as an enabler in the digital economy.

“As increasingly more Australians transact, trade and consume online, digital trust and security is paramount,” he said.

“Consumers need to know that they are backed by a trusted source to handle their personal and financial information and AusPost will have to work hard in order to win over consumers trust.”

Hue added that Australia Post needs to use better data encryption tools as encryption allows the merchant to mask critical and identifiable information while the data is in use and in transit.

“While I do not believe any financial or personal information is at risk, some of these details can be engineered in a spear phishing attack,” he said.

Hue pointed out that customer invoices also contain a significant amount of useful information which can be mined, again, to launch targeted attacks.

In a statement, an AusPost spokesperson said the Click and Send site had been temporarily deactivated and it hoped to have the service back up and running “as soon as possible”.

“Australia Post would like to reassure Click and Send customers that at no stage were their financial details compromised,” an AusPost spokesperson said.

“Customers who wish to send parcels should visit their local Australia Post outlet who will assist them.”

Follow Hamish Barwick on Twitter: @HamishBarwick

Follow Computerworld Australia on Twitter: @ComputerworldAU, or take part in the Computerworld conversation on LinkedIn: Computerworld Australia

"Suggesting that people's "purpose is to get information to flow through the ..."

Why change management doesn’t work
"Darn those pesky laws that get in the way of commercial exploitation ..."

Larry Page wants to see your medical records
"Instead of partitioning the device between corporate and personal data, another approach ..."

Dual-Persona Smartphones Not a BYOD Panacea
"Well that's a nice back-handed compliment isn't it? So now, finally, my ..."

After two-year hiatus, EFF accepts bitcoin donations again
"Actually, both Mobile App developers and CIOs should be blamed for it. ..."

CIOs struggle to deliver timely mobile business apps: survey

Latest Blog Posts

Whitepapers

Governance For All - Empowering IT and Business Content Owners
Governance for all is more than an IT initiative or a goal written in a plan document; it’s a strategy that unites IT and business content owners to achieve their SharePoint goals. At its best, governance means empowering self-governance, with tools like delegated access, effective reporting, and automated policy enforcement. This white paper explains how to create a “governance for all” strategy that will enhance SharePoint adoption and its benefits to the organization. Read now.

Learn more »
Accelerate Cloud and Composite Application Delivery
Are your requirements the need for faster release cycles, you have reduced budgets required to run and manage a complex test environment, and you want to decrease your third party expenses? HP Service Virtualisation, designed to enable your teams to create, develop and test against virtual services that simulate real service behaviour with no constraints, available anytime.

Learn more »
The SPARC Difference - Reduce Risks, Cut Costs, Power Innovation
Despite current economic factors, IT investment continues to be fueled by the need for better and more agile IT capabilities to support an enterprise’s business strategy, as well as to keep up with the rapidly changing demands of the ‘always-on’ user. However, budgets are squeezed and executives are under pressure to reduce capital expenditure and streamline administrative costs. A key strategy is to consolidate and refresh existing IT infrastructures. Download now to find out what technology can add value and enable you to change the shape of your IT budget and, to transform IT into a force for change and innovation.

Learn more »

All whitepapers

Most Read
Most Commented

Get exclusive access to Invitation only events CIO, reports & analysis.

Latest Jobs

FTOS Web Applications DeveloperNSW
FT.NET - Sitecore Developer - Melbourne - PermNSW
FTQuality ManagerSA
FTLead Software EngineerSA
FTSenior Python DeveloperNSW
FTR&D EngineerSA
FTJob Title: Mac Systems/ Enterprise Systems EngineerNZ
FTTechnical Business AnalystNSW
FTFlash / ActionScript Developer - ContractNSW

Zones

Featured Whitepapers

Unleashing the Power of Information

If business-relevant information is not well managed, secured and analysed, it can become an underutilized asset or—worst case—a legal and competitive liability. Nearly all of the IT and business executives ...

Recent comments

"Suggesting that people's "purpose is to get information to flow through the ..."
Why change management doesn’t work
"Darn those pesky laws that get in the way of commercial exploitation ..."
Larry Page wants to see your medical records
"Instead of partitioning the device between corporate and personal data, another approach ..."
Dual-Persona Smartphones Not a BYOD Panacea
"Well that's a nice back-handed compliment isn't it? So now, finally, my ..."
After two-year hiatus, EFF accepts bitcoin donations again
"Actually, both Mobile App developers and CIOs should be blamed for it. ..."
CIOs struggle to deliver timely mobile business apps: survey

Follow CIO

Market Place

Switch on The Symantec Business Critical Virtualisation Content Zone

Deploying mobility worthwhile challenge hear what CIOs have to say.. Read more

Now out of the office never means out of the loop. Office 365 – your complete office in the cloud.

Australian Breakfast Road Show: Enabling Proactive Security for Tomorrow's Business Trends

Latest Jobs

Subscribe to CIO

Critical. Authoritative. Strategic. CIO magazine addresses the issues vital to the success of IT and business executives. Solutions-oriented editorial provides a greater understanding of the role IT plays in achieving corporate goals. Subscribe to the print edition today.

Download OPML file for import with all IDG RSS feeds

CSO Online Data Security Briefing

AusPost Click and Send security glitch could affect consumer trust: IDC

Recommended

Project management methodologies

Nvidia, Citrix crank up virtual desktop delivery

Tapping into social experience: Tourism Australia

Homeless multinationals and taxing decisions

IT sourcing: in or out?

Avoiding your cloud vendor’s success trap

10 Tips for Dealing with a Bully Boss

5 open source help desk apps to watch

How to define the scope of a project

PMBOK vs PRINCE2 vs Agile project management

5 open source billing systems to watch

Opinion: Why national e-health is not for everyone

Dual-Persona Smartphones Not a BYOD Panacea

Larry Page wants to see your medical records

eBay bids on big data challenge

How Big Data can improve marketing and customer service

Symantec Business Critical Virtualisation Content Zone

BlackBerry Enterprise Service 10 Zone

HP Tech Connect Resource Centre

Unleashing the Power of Information

Enable Flexible Working

NetApp FAS6240 Clustered SAN Champion of Champions

Forrester: The Three Stages of Cloud Economics

Legal Compliance in Electronic Record Keeping