Feeds

PowerGen stems flow to bloody nose

Top exec with brains turns up just in time

  • alert
  • submit to reddit

The Essential Guide to IT Transformation

It was a massive cock-up and everyone knew it. Leaving customer credit card details and addresses outside the firewall, accessible to anyone with an Internet connection, was ineptitude of the highest order.

It was bad enough shooting itself in the foot once, but then PowerGen proceeded to empty the entire clip into the mangled remnants. No, it wouldn't contact the other people whose privacy had been compromised. Even if it had no intention of contacting them for god's sake tell everyone that you will. And so the security disaster was brought to the press' attention.

Asked about the situation by journalists, PowerGen then denied any such thing has occurred. BANG! Faced with proof, it concedes. BANG! It then accuses the man who discovered the hole and brought it to their attention of being a hacker. BANG! BANG! BANG!

And while it continues firing, the IT and national press stroll up and punch it on the nose, drawing blood first time. The company's top execs must have panicked when they realised how out of control the story had gotten. You can be sure that PowerGen's press spokesman is getting a right royal bollocking today.

But then in steps PowerGen's Retail Managing Director, Mike Wagner - a man with a brain and a hanky to hold to its bloody nose. First of all, be serious and apologise, then say you have some experts on the case who are working out how this could possibly happen (they will produce a report and this will never occur again). Then point out that it has been blown out of all proportion and the truth is far less exciting. Say you have involved the police. Say you are grateful to the man that discovered the hole (and subsequently ruined your week). And finally reiterate your commitment to the Web.

Mikey boy did all this and then kicked in with a sweetener - all those customers affected would be contacted individually and £50 given to those that choose to cancel their credit card. Not much considering the hassle, but at least it looks like concern. 8/10 Mike.

But despite all this, we are still amazed that big companies clearly still haven't sorted out their IT problems. PowerGen isn't the first and sadly it's not going to be the last.

We've put the PowerGen response from Mike Wagner below for you to peruse.

"We take security of customer information extremely seriously and I am sorry that this has happened and that customers may have been inconvenienced.

"The web site was immediately closed down and our systems experts confirmed that this was a one-off incident. Initial investigations showed that the information which had been accessed was in a file which due to a technical error was temporarily outside of the security gate of the system. This was immediately corrected and new procedures introduced to eliminate the possibility of it happening again. There was no breach of the security of our main customer database.

"We are directly contacting customers who pay accounts via the Internet and will assure them that the problem has been corrected. We have also set up a free phone customer information hotline and urge any of our customers who are concerned to contact this number (0800 0157755). As an additional security measure we are advising customers to change their card numbers and will offer compensation for the inconvenience. Meanwhile the online transaction site remains closed.

"We are now embarking on a wider reaching review of systems security in conjunction with external expert consultants and will be in further contact with John Chamberlain to assist us with this review. We plan to publish the results of the external consultants' audit on our web site.

"This has clearly raised some more general concerns about payment over the Internet. I will be asking banks, other financial services organisations and companies engaging in transactions over the web to discuss these wider issues with us. However, we remain committed to the Internet as customers increasingly find it a convenient way of doing business with us." ®

Related stories

PowerGen gives lessons on stupidity
PowerGen credit card security cock-up

Build a business case: developing custom apps

More from The Register

next story
iPad? More like iFAD: We reveal why Apple fell into IBM's arms
But never fear fanbois, you're still lapping up iPhones, Macs
Amazon says Hachette should lower ebook prices, pay authors more
Oh yeah ... and a 30% cut for Amazon to seal the deal
Philip K Dick 'Nazi alternate reality' story to be made into TV series
Amazon Studios, Ridley Scott firm to produce The Man in the High Castle
Nintend-OH NO! Sorry, Mario – your profits are in another castle
Red-hatted mascot, red-colored logo, red-stained finance books
Sonos AXES support for Apple's iOS4 and 5
Want to use your iThing? You can't - it's too old
Joe Average isn't worth $10 a year to Mark Zuckerberg
The Social Network deflates the PC resurgence with mobile-only usage prediction
Chips are down at Broadcom: Thousands of workers laid off
Cellphone baseband device biz shuttered
Feel free to BONK on the TUBE, says Transport for London
Plus: Almost NOBODY uses pay-by-bonk on buses - Visa
Twitch rich as Google flicks $1bn hitch switch, claims snitch
Gameplay streaming biz and search king refuse to deny fresh gobble rumors
Stick a 4K in them: Super high-res TVs are DONE
4,000 pixels is niche now... Don't say we didn't warn you
prev story

Whitepapers

Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Boost IT visibility and business value
How building a great service catalog relieves pressure points and demonstrates the value of IT service management.
Why and how to choose the right cloud vendor
The benefits of cloud-based storage in your processes. Eliminate onsite, disk-based backup and archiving in favor of cloud-based data protection.
The Essential Guide to IT Transformation
ServiceNow discusses three IT transformations that can help CIO's automate IT services to transform IT and the enterprise.
Maximize storage efficiency across the enterprise
The HP StoreOnce backup solution offers highly flexible, centrally managed, and highly efficient data protection for any enterprise.