DotResults - Quick Tech Answers

OUC Busy Twittering, Leaves Security Shortcomings

by Kayla on November 4, 2009

We’re moving in the next two weeks so I went to the Orlando Utilities Commission website to request a turn off date for our electricity. Their new design was in place, as it has been for a few months I believe, so I was not exactly sure where to navigate. When I got to the Turn Off Service page, I was asked to type in my social security number. As usual, I glanced up to look for https and not only was a secure connection not in place, the domain name itself surprised me. I was suddenly at hooahouc.com which was registered to hooah.cc, a web design company.

Somehow through my clicks, I ended up on the web designer’s mock-up site for OUC. It can’t be denied that there could be harm if someone sends info through that form. I went back to OUC.com to see what happened exactly. On the Manage Your Account page which is a considerably important page, a link to Customer Service Center points to the mock-up site.

I went back to OUC.com and got to the Manage Your Account page in an alternate way. There on the correct page after manually typing https, I was actually redirected back to http. In closing, OUC needs to enforce https redirects and clean up a few things that are more important than social media. As everyone envelops themselves in the community whirlwind, it can be easy to lose focus on security details. Sniffers and hackers are aware and are on the prowl now, more than ever.

Note: This is not an attack on OUC. I know their Orlando utility service is solid from my experience, but their online presence needs more care. We’ve sent a note over to them about these points.

Update: November 5
Well, that’s odd timing. I saw a graphic in my latest OUC bill about two months ago which mentioned their Twitter account. So I associated that with their new website and thought the design was up already. OUC replied to me today and let me know that their new website actually went up yesterday. Great response from them!

Dear Ms. Selans:

Thank you for your recent email to the Orlando Utilities Commission regarding our website.

OUC considers the security of our customers, and their personal information, of the highest priority. Thank you for providing us with feedback in reference to our website. Please be advised that the new OUC website went live November 4, 2009, and is still in a state of continual update to guarantee the stability and security of OUC customers and business clients.

I have forwarded your email and suggestions to the direct attention of our IT department to be logged and addressed immediately.

Please let us know if we can be of additional assistance!

Sincerely,

Mr. Young

  • Share/Bookmark

Leave a Comment

Previous post: OS X Terminal Commands, The Basics

Next post: BrightHouse Live Chat Is Lightning Fast

  • Free UNIX Shell Account

  • Tags

    birdcage blog hosting services brand new cell phones chili cisco class computing cooking cryptographic software device facebook fonts gadget good idea googles handwriting handwriting font identify internet kindles mac macports online social networking openbsd orlando osx peek perl phone bill php programming language putty reason scanning scanning imaging social media spicy ssh system software terminal twitter UNIX web 2.0 wordpress world wide web

2010 DotResults. All rights reserved. Powered by Selans

Get smarter with the Thesis Theme for WordPress