Encrypting data that passes over the Internet from customers to e-commerce sites is a good thing. But it's not necessarily enough. In fact, personal data used in online transactions is often encrypted at the least significant time. . . .
Encrypting data that passes over the Internet from customers to e-commerce sites is a good thing. But it's not necessarily enough. In fact, personal data used in online transactions is often encrypted at the least significant time.

Virtually all cases of credit card theft happen when a malicious hacker gains access to an e-commerce site's server, and is then able to access the database that contains customer information -- which by then is often unencrypted and exposed.

The link for this article located at Wired is no longer available.