Slashdot Mirror


PayPal Security Flaw Allows Identity Theft

miller60 writes "Phishing scammers are actively exploiting a security flaw in the PayPal web site to steal credit card numbers belonging to PayPal users. The scam tricks users into accessing a URL hosted on the genuine PayPal site, which presents a valid 256-bit SSL certificate confirming that the site belongs to PayPal. However, some of the content on the page has been modified by the fraudsters via a cross-site scripting technique, and victims are redirected to a spoof site that requests their account details."

2 of 212 comments (clear)

  1. Which Korea? by ch-chuck · · Score: 4, Funny

    The server currently running the scam is hosted in Korea

    North? South?

    As I post this, 6 out of 8 top level posts have a '?' in the subject,
    now 7 out of 9.

    --
    try { do() || do_not(); } catch (JediException err) { yoda(err); }
  2. I'm protected from all identity theft for life.... by sgant · · Score: 5, Funny

    I've been working on this for years now...decades actually....but now I'm totally protected from people stealing my identity and ruining my credit. Here's how I did it:

    I've personally destroyed my credit so badly over the years that if someone were to steal my identity, the joke would be on them! Hell, it may actually even help my credit.

    Oh sure, people laughed at me over the years...but who's laughing now?!! Ok....so they're still laughing at me...but that's beside the point.

    --

    "Leo Fender was in a 'state of grace' when he designed the Stratocaster." -- Paul Reed Smith