Vintage Curve Update — 06/12/2008

Programmer and Blogger Seeks Credit Score Improvment Loan

Zopa Security Leak?

June 17th, 2008 | Zopa, security 

(This security leak was plugged in under 24 hours from reporting… Luke from Zopa confirmed fix in comments at the end of the post. This note was added after the security leak was fixed.)

I was randomly checking my stats on Zopa and noticed that a person with whom I am familiar had chosen to help my Zopa loan… Thank you!!!

There is a feature on Zopa that allows you to send a thank you note via the website… So, I decided to do just that and I sent the note…

Moments later I received an email on which I was cc’ed… Now I have this person’s email address. Seems like a security leak to me.

It is not like I couldn’t have gotten in touch with this person in another manner… But if the person was a total unknown Zopa just sent me their email address…

I am open about my email address, but I know some people (my wife for example) would be quite upset at her email address being given out…

I informed my contacts at Zopa and they insured me that this security breach would be addressed right away with utmost priority.

If you are interested in a ZOPA CD consider helping out my loan… I promise I wont send you a thank you note to obtain your email…

Click picture for a larger image….
Zopa Leak

Related Stores If you liked this article, vote for it on del.icio.us and stumbleupon.


Categories:

Zopa, security



Tags:

, , , ,


10 comments ↓
#1 Luke (Zopa) on 06.17.08 at 4:52 pm

Hi Mr. RateLadder,

Thanks very much for posting this — a serious privacy issue indeed. We’re going to jump on it right away, and cut out this cc’ing business so you can’t acquire investor email addresses (inadvertently or not).

Again, thanks for posting, and congrats on getting some Help!

Luke

#2 Luke (Zopa) on 06.18.08 at 8:27 am

Hi again,

Just wanted to update this and let you know that we’ve fixed the problem, and email address info is no longer being communicated to either borrowers or investors. Thanks for catching this!

Luke

#3 RateLadder on 06.18.08 at 8:54 am

@ Luke

Thanks Luke… Very quick work indeed… Under 24 hours from report to fix…

#4 Sara on 06.18.08 at 12:00 pm

These things happen!

#5 RateLadder on 06.18.08 at 12:05 pm

@Sara

No doubt… I was particularly impressed both by how seriously they took the issue and how rapidly they addressed the issue.

#6 Thursday Blogger Shout-outs on 06.19.08 at 8:23 am

[...] I would like to give a pat on the back to RateLadder for alerting Zopa of their security leak. Good quick action by Zopa plugged it up in less than 24 hours. It’s what I like to see from [...]

#7 Brett @ Personal Loan Portfolio on 06.19.08 at 6:41 pm

Good find and good job to Zopa for fixing it so quickly.

#8 Weekly Roundup - It’s Officially Summer Edition on 06.22.08 at 7:13 am

[...] from Rate Ladder discovered a security breach at Zopa, a P2P lending company. He contacted Zopa and they got on it right away. It’s good to see how [...]

#9 Top Ten Referrers and Posts for the First Half of 2008 | Personal Loan Portfolio on 08.07.08 at 5:25 am

[...] 4) Rate Ladder often has interesting posts like the Zopa security issue. [...]

#10 Tom on 10.05.08 at 4:27 pm

Here’s my reason for avoiding a Zopa loan -

http://prosperlending.blogspot.com/2008/10/borrowers-avoid-zopa.html

Leave a Comment

Email Updates