Home > slashdot > Microsoft Dynamics GP “Encrypted” Using Caesar Cipher

Microsoft Dynamics GP “Encrypted” Using Caesar Cipher

May 21st, 2010 05:39 admin Leave a comment Go to comments

scribblej writes “Many large companies use Microsoft’s Dynamics GP product for accounting, and many of these companies use it to store credit card numbers for billing customers. Turns out these numbers (and anything else in GP) are encrypted only by means of a simple substitution cipher. This includes the master system password, which can be easily selected and decrypted from the GP database by any user. Quoting: ‘[Y]ou DON’T HAVE TO GIVE ACCESS TO THE DYNAMICS DATABASE. What that means is if you create a base user in GP, that user can log into the SQL server and run a select statement on the table containing the “encrypted” GP System password. Not good.’”

Source: Microsoft Dynamics GP “Encrypted” Using Caesar Cipher

Related Articles:

  1. Cryptographers Break Commonly Used RC4 Cipher
  2. MS Handed NSA Access To Encrypted Chat & Email
  3. Convicted Terrorist Relied On Single-Letter Cipher
  4. Second 3G GSM Cipher Cracked
  5. Microsoft Dynamics Tries To Ease Enterprise Customers Onto The Cloud
blog comments powered by Disqus