How does ModernBill store CC numbers?

I have been trying to dig some info up on this after reading an older thread about storing CC for recurring billing.

The situation:

-Auth.net account
-want to do recurring billing
-noticed that MB can do this.

I see on their site they use RC4, a symmetrical encryption. How do they protect the CC#'s from prying eyes?

Lets say I hack your MB server and can get access as mysql/apache user or even root. How will that data not be swiped (no pun intended) enabling me running to mexico with 50,000 credit card numbers and living the high life?

A silly figurative example but the question is serious. If I buy MB what mechanism is there in place to protect me? Or, is storing CC not feasible?

 

 

 

 

Top