Home › News › Industry News

PayPal vulnerability leaves users open to fraud

On June 16, 2006, 3:39 PM EST

PayPal users be cautioned, there is another security vulnerability that has been discovered with the PayPal system that goes a step beyond the “Your account is disabled” e-mails. This phishing technique actually uses a valid PayPal URL and even provides a valid security certificate, but uses an injection technique to override PayPal's page and redirect to a 3rd-party site. Due to the browser having valid URLs, many could easily be fooled into supplying the 3rd-party site with PayPal credentials, of course leaving them open to being ripped off. As the warning mentions, people using the Netcraft toolbar won't be affected as it automatically blocks the 3rd-party site (now that it has been discovered), but many others probably won't be so lucky

Related Stories

No tags on this story

Next Article: Microsoft's Patch Tuesday brings problems to dial-up connections

4 comments

User Comments (4)

Post a comment

DragonMaster on June 16, 2006 4:07 PM	Also, when I receive PayPal e-mails in an e-mail account that isn't even suscribed to it, I just don't trust this.What to look for : Real PayPal e-mails have your username in them! Reply
Julio on June 17, 2006 4:23 AM	In general, it's a bad idea to click email links to anything related to your Paypal or bank accounts, same goes with eBay accounts, etc. Reply
DragonMaster on June 17, 2006 9:44 AM	[quote] In general, it's a bad idea to click email links to anything related to your Paypal or bank accounts, same goes with eBay accounts, etc.[/quote]Especially since the real PayPal mails tell you to open your browser and type paypal.com manually instead of click the link in the e-mail... Reply
DragonMaster on June 17, 2006 5:21 PM	[url]http://news.com.com/PayPal+fixes+phishing+hole/2100-7349 3-6084974.html?tag=nefd.top[/url]Fixed! Reply

Browse more commented news

Most Popular

Trending

Featured

Editors' Storage Picks

Downloads & Drivers

The Cleaner 2012 8.1.0.1110

WinISO 6.2.0.4526

More Downloads

Related Discussion

Compaq Presario CQ61 screen LCD cable change but not working

Laptop screen messed up

Reclaim D partition?

Are these computer parts compatible

RAID drives into new system?

More at the Forums

Subscribe to TechSpot

Get free exclusive content, learn about new features and tech breaking news.

TechSpot

Home › News › Industry News

PayPal vulnerability leaves users open to fraud

Next Article: Microsoft's Patch Tuesday brings problems to dial-up connections

User Comments (4)

Post a new comment

Most Popular

iOS 5.1.1 untethered jailbreak tool released, supports 4S, iPad 3

After five days, Facebook ranks as worst IPO flop of the decade

Rumor: Windows 8 RC will launch June 1, will ship with Adobe Flash

Diablo III becomes the fastest-selling PC game in history

Rumor: AMD "Piledriver" FX CPU production to begin Q3 2012

Kingston HyperX 3K 240GB and SSDNow V+200 240GB Review

TechSpot PC Buying Guide

Interview with Raspberry's Founder Eben Upton

Diablo III Review

Diablo III Performance Test: Graphics & CPU

Editors' Storage Picks

87 Samsung 830 Series SATA600

83 Seagate Momentus XT Solid State Hybrid 750GB SATA600

85 Intel SSD 520 Series SATA600

90 OCZ Synapse Cache Series SATA600

85 Crucial RealSSD M4 C400 256GB SATA600

Downloads & Drivers

Related Discussion

Subscribe to TechSpot

Featured Tech Content - Inside TechSpot

	Guest user To post as an anonymous user click here.			Members If you are a TechSpot member, please login first.
By signing up you gain complete access to the TechSpot community. Join thousands of computer and technology enthusiasts that contribute and share knowledge in our forum. Post messages, get a private inbox, upload your own photo gallery and more.