Quote:
Originally posted by brocklanders:
what's the worst that could happen if they got access to cmi? issue a few refunds, add his hAck3rz friends to your password file... change a few subaccounts.... It's not like he could get the checks sent to him as this requires a written verification sent to iBill.
Is this correct?
|
Well personally the biggest concern I would have is that they could collect all the e-mail addresses from members who have joined.
A database full of members who pay via CC... very useful... and if they spoofed IBILLS email maybe they would do the same to the webmasters site that they got the emails from, customers would believe what was sent then.
They can also look at your full personal details, bank account deatils if you are paid via wire, details of your affiliates etc..
Cancelling recurring members accounts and issuing refunds seems a serious matter in my mind.
But that's just the way I see it....