Home Archive Forum About
PayPal Security Flaw Allows Identity Theft
Posted by Donster on: 2006-06-17 16:31:42 773
Thanks Netcraft

A security flaw in the PayPal web site is being actively exploited by fraudsters to steal credit card numbers and other personal information belonging to PayPal users. The issue was reported to Netcraft today via our anti-phishing toolbar.

The scam works quite convincingly, by tricking users into accessing a URL hosted on the genuine PayPal web site. The URL uses SSL to encrypt information transmitted to and from the site, and a valid 256-bit SSL certificate is presented to confirm that the site does indeed belong to PayPal; however, some of the content on the page has been modified by the fraudsters via a cross-site scripting technique (XSS).

Read more...
News Source: Email


Post New Comment
Note: Comments have been disabled.
Icon:
                 
                 
Message:
Include my profile signature.
Disable smilies in this post.
Disable block tag code.
Add [url] tag at URLs.


© 2024 COMBATSIM.COM - All Rights Reserved