Skip to Content
8-11-2008 @ 10:11PM
Actually, I verified before the site went down a few minutes ago, that they are NOT properly using https to collect credit card information (*). This could easily lead to a huge amount of Credit Card theft. Credit Card theft in and of itself wouldn't be a huge deal, but according to Blizzard when you arrive at Blizz Con, you must have the same Credit Card with which you purchased the tickets (obviously this was a measure implemented to try and stop people from buying tickets and reselling them on Ebay). A bunch of people will have to cancel those credit cards before the Con do to improper security measures. Blizzard has completely screwed this up, beyond just the constant server crashes.* - I will note that they used an Ajax frame to request credit card information. That form was loaded over HTTP. The site quit working before I could determine if the submission process went over HTTPS. I have never seen a site do this before, but it might be possible. If this is what is happening, that is better than no security, but it is extremely bad site design.
First time? A confirmation email will be sent to you after submitting.
Members enter your username and password.
Enter your AOL or AIM screenname and password.
Please keep your comments relevant to this blog entry. Email addresses are never displayed, but they are required to confirm your comments.
When you enter your name and email address, you'll be sent a link to confirm your comment, and a password. To leave another comment, just use that password.
To create a live link, simply type the URL (including http://) or email address and we will make it a live link for you. You can put up to 3 URLs in your comments. Line breaks and paragraphs are automatically converted — no need to use <p> or <br /> tags.