New Security Flaw on PayPal Website Puts Users at Risk of Identity Theft
|
06-17-2006, 09:40 AM,
Post: #1
|
|||
|
|||
New Security Flaw on PayPal Website Puts Users at Risk of Identity Theft
Quote:A security flaw in the PayPal web site is being actively exploited by fraudsters to steal credit card numbers and other personal information belonging to PayPal users. The issue was reported to Netcraft today via our anti-phishing toolbar. full article with screenshots: http://news.netcraft.com/archives/2006/0...theft.html |
|||
06-17-2006, 04:28 PM,
Post: #2
|
|||
|
|||
Re: New Security Flaw on PayPal Website Puts Users at Risk of Identity Theft
PayPal patched the hole on its site within hours of the Netcraft report yesterday but there's no indication they plan to contact all of their members to alert them that a breach occured-i.e. that the PayPal website was hacked in a cross-scripting attack. :
Quote:PayPal has fixed a flaw in its Web site to block a sophisticated scam designed to obtain sensitive data from members, the payment service said Friday. full article: http://news.com.com/PayPal+fixes+phishin...g=nefd.top |
|||
06-17-2006, 08:42 PM,
Post: #3
|
|||
|
|||
Re: New Security Flaw on PayPal Website Puts Users at Risk of Identity Theft
Sloppy programming. Did they outsource all of their development work to Microsoft?
|
|||
06-18-2006, 12:18 AM,
Post: #4
|
|||
|
|||
Re: New Security Flaw on PayPal Website Puts Users at Risk of Identity Theft
Quote: a cross-site scripting technique It isn't surprising that the PayPal site has cross-site scripting flaws since the US government issued a security alert about similar problems on the eBay site in April. |
|||
« Next Oldest | Next Newest »
|
Users browsing this thread: 1 Guest(s)