We'd like to remind Forumites to please avoid political debate on the Forum... Read More »
We're aware that some users are experiencing technical issues which the team are working to resolve. See the Community Noticeboard for more info. Thank you for your patience.
📨 Have you signed up to the Forum's new Email Digest yet? Get a selection of trending threads sent straight to your inbox daily, weekly or monthly!
Amazon security alert?
Options
jubilee12
Posts: 36 Forumite
This isn't exactly a moneysaving question, but it could lose Amazon customers a lot of money if I've spotted a universal problem!
As far as I can tell, the Amazon UK site is not secure. When an order has been placed and the customer is logged out, it is possible to retrieve the page where the order was made, using the "back" button.
When I raised this query with their customer services helpline last week, I was told that this "did not matter" because most of the account details are encrypted.
In my view, this isn't satisfactory because 1)another computer user could still gain access to the rest of your personal information and 2) if someone is using a credit or debit card for the first time, all of their card details can be retrieved.
Of course, you can erase your history of the page. But this is not the standard for secure pages (and I'm not sure it is possible to erase this information permanently from your own computer).
I still haven't received a reply from Amazon UK. A survey of friends and family suggests this is a general problem rather than an issue with my computer.
Has anyone else encountered this? Can any techies out there tell me if I am overreacting to a harmless issue?
Many thanks
As far as I can tell, the Amazon UK site is not secure. When an order has been placed and the customer is logged out, it is possible to retrieve the page where the order was made, using the "back" button.
When I raised this query with their customer services helpline last week, I was told that this "did not matter" because most of the account details are encrypted.
In my view, this isn't satisfactory because 1)another computer user could still gain access to the rest of your personal information and 2) if someone is using a credit or debit card for the first time, all of their card details can be retrieved.
Of course, you can erase your history of the page. But this is not the standard for secure pages (and I'm not sure it is possible to erase this information permanently from your own computer).
I still haven't received a reply from Amazon UK. A survey of friends and family suggests this is a general problem rather than an issue with my computer.
Has anyone else encountered this? Can any techies out there tell me if I am overreacting to a harmless issue?
Many thanks
0
Comments
-
Yep you're overreacting0
-
Can you talk me through why, please?0
-
just close the browser window, then re-open it... you can't go back then...
you can use the back button with many online services, but as soon as you try a link on that page, it shouldn't load anything with your details in it, infact, if you logged off properly, you should be askd to log back in...0 -
This isn't exactly a moneysaving question, but it could lose Amazon customers a lot of money if I've spotted a universal problem!
As far as I can tell, the Amazon UK site is not secure. When an order has been placed and the customer is logged out, it is possible to retrieve the page where the order was made, using the "back" button.
When I raised this query with their customer services helpline last week, I was told that this "did not matter" because most of the account details are encrypted.
In my view, this isn't satisfactory because 1)another computer user could still gain access to the rest of your personal information and 2) if someone is using a credit or debit card for the first time, all of their card details can be retrieved.
Of course, you can erase your history of the page. But this is not the standard for secure pages (and I'm not sure it is possible to erase this information permanently from your own computer).
I still haven't received a reply from Amazon UK. A survey of friends and family suggests this is a general problem rather than an issue with my computer.
Has anyone else encountered this? Can any techies out there tell me if I am overreacting to a harmless issue?
Many thanks
This is what I refer to as technological paranoia. The CC details are encrypted and even though they are stored on the site you will find that once the session has completed a person cannot simply open up the local cache and find your card details. The transmissions between your machine and their servers are encrypted and this is a requirement for the certificate that amazon display. You will also find that the pages cant really be stored locally as they are generated by the server when they are requrested and the page with your card details isnt like a text page with all the numbers written on it. When ever you hear about peoples card details being stolen off a website its not yet happened by a criminal hitting the back button on your browser. It will generally be by a grevious breach of security on the vendors https based server. Only one website ever have I had problems with and that was ebuyer.com and that was due to one of their employees giving my card details to someone so they could buy themselves a nice plasma tv!0 -
Thank you for explaining that so clearly, that is very helpful.0
This discussion has been closed.
Confirm your email address to Create Threads and Reply
Categories
- All Categories
- 351K Banking & Borrowing
- 253.1K Reduce Debt & Boost Income
- 453.6K Spending & Discounts
- 244K Work, Benefits & Business
- 598.9K Mortgages, Homes & Bills
- 176.9K Life & Family
- 257.3K Travel & Transport
- 1.5M Hobbies & Leisure
- 16.1K Discuss & Feedback
- 37.6K Read-Only Boards