bsdubois00
Head Honcho Emeritus
Nevermind - its still there
In case you were curious, this is really, really dumb.We made a decision “way back when†to store the passwords in plain text
so we could send a password reminder, upon member request, to the email
address on file for a member. This was [deemed] a reasonable decision
because the passwords did not protect any highly confidential data or
financial data (home addresses and phone numbers are not stored on the
server).
We made another decision “way back when†to do our credit card
processing on a separate system using a vendor that specializes in
commercially secure on-line commerce. Credit card numbers are NOT
stored on the USPSA server, and the passwords that were recently
disclosed do NOT give access to any credit card information.â€
Someone tried my LinkedIn as well but it was a different password so they did not get to far. USPSA was the only place i used that password.Mitch Gibson said:The only effect I experienced from this issue is someone tried to access my Linked-In account, and failed.