Quote:
Originally Posted by Zester
ok, leaving aside the idea that the affiliate's email was stolen:
now NATS users (sponsors) need to disable this "nats admin" access in order to close the security hole ? after that the data is (relatively) safe ?
|
heck no i would suggest a security audit..
disabling admin access is the first step , if you dont do a security audit theres any number of places someone could have inserted something i would think .. nats would be the only person who can answer that question for sure but if an admin or someone using an admin account messed with the nats templates theres any number of places nefarious things could have been placed.