2002-2003 Foundry Credit Card Transactions Exposed

Cher Ami writes:

Rogcollectibles.
If your cards are like mine, they are just reissued with the same account number with either 2 or 4 years added to expiration date. The number stays the same.
It may be prudent to ask for a new card

Areas of Interest

General

Featured Hobby News Article

Boki: "Old Figures"

Just Needs Varnish!

Featured Showcase Article

Derivan Paints: Striking It Lucky With Colour

Sometimes at a convention, you can be just dead lucky and find a real bargain.

Featured Profile Article

Christmas House Christmas Trees

How time flies! Another look at trees from the dollar store.

Current Poll

Most Watched Horror Film (Round 1D)

7,093 hits since 28 Mar 2007

One of our readers has alerted us to the fact that a foreign website (possibly Indonesian) has posted what appear to be confidential credit card transactions involving Foundry mail-orders.

The files, which are plain text files posted in an accessible folder, are dated 6 January 2004. The actual orders date from 2002 and 2003.

For example, one file seems to contain the information from a series of emails (confidential information removed by TMP):

Date: Sun Sep 01 13:55:34 2002
To: The Foundry Ltd <>
From: <>
Subject: 523 - Secure Online Credit Card Order
TOTAL CHARGES: 144.00
Name:
Street:
City:
State or Province: MA
Zip or Postal Code: 02472
Country: U.S.A.
Phone:
E-Mail:
Invoice# 523
I.P. Address:
Domain:
Expiration Month: 02
Year: 2005
CC Type: Visa
CreditCard#
3 digit number on back of the card:

There are several dozen files in all, each of which contain one or more credit-card orders.

TMP has notified Foundry of the problem, and is not publicly disclosing the website location.