- Author: Dave Krause
On Friday, December 13, 2013, the ANR Survey and Registration tool was spammed by an outside entity. The page they targeted includes a routine that sends confirmation emails to people who complete the credit card payment process embedded in the survey tool.
The outside entity was blocked, and additional layers of security have been added to this page to prevent it from happening in the future.
No credit card information is accessible from this page, or our database. This information is processed separately by UC Davis, and our application merely receives confirmation when a payment is successfully made. No credit card information was compromised.
We apologize for any concern or confusion caused by this incident. If you experience any anomalies with the survey tool, please let us know immediately by filing a ticket in the ANR Tracker at https://ucanr.edu/tracker.
Please check your post survey page to see the information that may have gone out. At this point we have blocked the attack, but please let us know if you have a survey that would respond with sensitive information via the post survey page.
Again, it is important to note that no credit card information was made available.
Karl
was confusing as this was 7 months ago….
e.g. were certain dates or lists targeted ?
can we find out which users recd these erroneous spam e-mails ? basically, who should be notified.