Blippy’s web site says, “Blippy is a fun and easy way to see and discuss what everyone’s buying.” It may also be a fun and easy way for identity thieves to get your credit card number. Jennifer van Grove reports:
Sharing your credit card and online purchases with friends on the web sounds risky and it is. We’ve just discovered that several credit card transactions shared on social networking site Blippy have been exposed — with full credit card numbers included — in Google search results.
Tipster Trey Copeland wrote to us with a link to results for the search: site:blippy.com +”from card”. That search returns results showing detailed purchase information for transactions. Each result highlights that there was a “debit card transaction” or “card transaction,” the amount spent, the specific location (address included) and the full card number (as seen below)
Read more on Mashable. I ran the suggested search and yes, it does indeed reveal full card numbers, many of which appear to belong to a few particular individuals.
Ironically, perhaps, when I checked the Blippy page for two of the users, their pages each say:
[user] has protected his/her purchases. Send a follow request to encourage [user] to share with you.
I imagine that they’ll be quite shocked to discover that although they tried to protect their purchases, both their purchases and their card numbers are available to the entire world in Google search results.
Cross-posted from PogoWasRight.org, where you can find updates to this story here.