severe warning of cracker/criminal activity related to ecommerce that I’ve ever seen: FBI Press Room – E-Commerce Vulnerabilities. Note that they specify that it was unpatched IIS servers they came through.
With any luck, this will be a positive result of the dot-com crash – the companies that survive will better understand the need for professional server management. I can’t imagine why consumers (if they knew they had been affected) couldn’t launch a (huge) class-action suit against the companies who chose to run servers without adequately staffing their IT departments to care for and feed them.
