David Eade

David Eade is a web developer and secure applications consultant. David Eade is also director of an Internet web application company. Get in touch to arrange security vulnerability testing for your web applications.

Cahoot security loophole

In November 2004 David Eade exposed a security loophole allowing cahoot customers to access other peoples' accounts without a password. Customers could log in to other people's accounts using just a user-name and bypassing any security information. The cahoot website, run by Abbey bank, was closed down for 10 hours to carry out urgent repairs. Tim Sawyer, head of Cahoot bank, said it needed to learn lessons from the security breach.

Read the BBC reports

Television appearances

David Eade was interviewed for BBC Breakfast regarding the Cahoot security loophole.

BBC News 24 report, 10am 5 November 2004

BBC: "The cahoot website is littered with reassuring messages about its security policy but, as one of our viewers pointed out, the claims were questionable..."

BBC1 News headlines, 1pm 5 November 2004

BBC: "A major Internet bank had to close for 10 hours after it was discovered that customers' accounts could be accessed without a password. Cahoot, run by Abbey, has apologised for the loophole in security. Max Foster reports..."

Newspapers and external sites

Several newspapers reported the Cahoot security loophole. David Eade is not responsible for the content of these articles or external sites