Safari browser does not get PayPal's stamp of approval

By on February 28, 2008, 2:57 PM
It's not uncommon to see Mac users living and dying by Apple's Safari browser that comes built in OS X, but in a surprising bit of news today, PayPal is warning users that they are better off using an alternative if they want to avoid fraud. Just like the average Windows user usually doesn't bother to download a browser different than Internet Explorer, Safari is commonly the browser of choice for Mac users.

Now, this doesn't necessarily mean Safari is a bad option, not even an insecure browser, but in the eyes of PayPal it is lacking two important anti-phishing security features that "Internet Explorer 7 or 8 when it comes out, Firefox 2 or Firefox 3, and indeed Opera" already pack in. The two features mentioned by Michael Barrett, PayPal's chief information security officer, are a built-in phishing filter and an anti-phishing technology, called Extended Validation certificates.

PayPal happens to be in a very unique position for making an educated assessment regarding web security, but we don't see either of those two technologies making miracles for saving users from fraudsters. That said, we wouldn't be surprised if Apple implemented them on its browser in a matter of weeks or months, depending on how badly they are demanded by its users. At the end of the day, there is no better anti-phishing filter than yourself, being aware that scammers are out there and they are trying to get you. Just make sure you browse the right sites and follow links where you can trust them.




User Comments: 6

Got something to say? Post a comment
thejedislayer said:
I would think that Apple would act immediately on this issue? Seeing as how this is a major security flaw and that it may hurt them not to fix this problem rather quick. Without regards to user request for such implications to be put in place.
icye said:
Julio is correct with his comment that its the user's actions on the internet are the reason why they run into problems. People just don't practice safe computing and compromise their own security. No browser is perfect. We don't know how many exploits that are left unfixed on both IE and Firefox. You wouldn't believe how much crap I have to delete because of user negligence.[Edited by icye on 2008-02-28 15:42:36]
eldernorm said:
@thejedislayer,I am not sure what you are asking Apple to do here??? The flaw is just that Safari does not use a pictured symbol to help verify a site. Many sites do not support this "fix", so its kind of like PayPal saying "do it my way or you are bad". I would like to see a fix to be able to verify when I am on the right web site, especially when I am doing banking etc, but it needs to be an across the board thing and not just a --- whine in the dark. Also, I would never think of IE as being more secure. LOL :-) Now that is just funny. en
windmill007 said:
Anti-fishing? I always turn that crap off anyways. If you arn't smart enuff to verify where you are at by looking at the address bar u deserve to be phished..Well not really but u see my point. Now there used to be exploits that would say your at the correct address in the address bar but u were really at a fake site. Ahhh those were the days.
siiix said:
yeah this is pointless, those who care enough to be aware of what paypal approves or not do not need Anti-fishing.... but the uneducated/uninformed or clueless targets/potential-victims by definition wont read security warnings and approvals .. because if they would then they would not need Anti-fishing to begin with.
jhill3d said:
I simply don't install ANY apple software on my Windows machines. Quicktime and iTunes both bog down the system and don't play nearly as well as their mac counterpart. We have plenty of alternatives to pick from.
Load all comments...

Add New Comment

TechSpot Members
Login or sign up for free,
it takes about 30 seconds.
You may also...
Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.