Users login

Create an account »

JOIN XATRIX

Users login

Home » Hacking News » PayPal fixed the vulnerability

PayPal fixed the vulnerability

by Nikola Strahija on June 17th, 2006 The famous online financial service provider was struggling with a serious security vulnerability threatening their users, and has managed to patch it up.


It took only a small flaw in the PayPal code for attackers to be able to steal usernames, passwords and social security numbers.

The attack skillfully used the code bug to redirect users to a very real looking PayPal site, in fact a phishing haven with malicious code hiding behind the message informing user that his account has been compromised.

The gullible users were than directed to enter their usernames and passwords, together with SSNs and credit card numbers.

On top of closing this security hole, Paypal also informed the hosting company which provides services for the Korean hackers, and hopefully the site will be taken down soon.


Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.

Contact

Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »