Top

Tag: Paypal


Cyber-crime, Identity theft

PayPal Warns 35,000 Users of Credential Stuffing Attacks

January 20, 2023

Via: Security Week

“On December 20, 2022, we confirmed that unauthorized parties were able to access your PayPal customer account using your login credentials,” the company said in the notification letter sent to the impacted individuals. According to PayPal, between December 6 and […]


Threats & Malware, Vulnerabilities

New Unpatched Bug Could Let Attackers Steal Money from PayPal Users

May 23, 2022

Via: The Hacker News

A security researcher claims to have discovered an unpatched vulnerability in PayPal’s money transfer service that could allow attackers to trick victims into unknowingly completing attacker-directed transactions with a single click. Clickjacking, also called UI redressing, refers to a technique […]


Cyber-crime, Phishing

The 25 most impersonated brands in phishing attacks

February 11, 2020

Via: Help Net Security

PayPal remains the top brand impersonated in phishing attacks for the second quarter in a row, with Facebook taking the #2 spot and Microsoft coming in third, according to Vade Secure. Leveraging data from more than 600 million protected mailboxes […]


Phishing

Phishing attacks becoming more targeted, phishers love Microsoft the most

October 23, 2018

Via: Help Net Security

Microsoft remains ensconced on the top of the list of brands impersonated by phishers in North America, Vade Secure has revealed. Phishers’ favorite targets The company compiles a list of the top 25 “phishers’ favorites” each quarter by tallying the […]


Network security

PayPal’s TIO Networks Suffered Data Breach Exposing Data on 1.6 Million Customers

December 5, 2017

Via: Dark Reading

PayPal states TIO Networks, a payment processing company it acquired this summer, is not part of its network and PayPal remains unaffected by the breach. PayPal’s TIO Networks suffered a data breach that may have compromised the personally identifiable information […]


Phishing

PayPal users targeted in sophisticated new phishing campaign

January 31, 2017

Via: We Live Security

Recent phishing scams targeted both Gmail and Yahoo, and now attackers have their sights set on PayPal with some very convincing bait. With fake websites and email campaigns that look real, it’s easy to be fooled, and potentially have your […]


Editorial, Mobile security

Find out the basics on the most famous mobile payment systems

June 1, 2016

Via: Russel Edwards

While a recent report coming from the Institute of Electrical and Electronics Engineers shows that according to nearly 1400 tech enthusiasts (out of 2000 surveyed) mobile payment is sure to take over the payment market and clearly will surpass cash […]


Application security, Email security

New type of PayPal spam discovered

January 22, 2016

Via: SC Magazine

Security researcher Troy Hunt has come across a new type of spam – $0 invoices from PayPal accounts. These emails evade spam filters as they fail to trigger the typical characteristics of a suspicious email. Sharing a screencap on his […]


Vulnerabilities

Researchers Outline Vulnerabilities in Yahoo, PayPal, Magento Apps

September 14, 2015

Via: vulnerabilities

#researchers recently discovered a smattering of #vulnerabilities in web applications and mobile applications belonging to companies like #yahoo, #paypal, #magento, and Shopify that could have led to account theft, session hijacking, and phishing, among other consequences. Hadji Samir, Ebrahim Hegazy, […]


Vulnerabilities

PayPal patches potential payment-stealing vulnerability

August 30, 2015

Via: vulnerabilities

First, a quick review of Cross Site Scripting. Imagine that I want to get your website to serve up malicious content for me. Say, perhaps, that I want to alter your “Pay Now” page so that the customer sees a […]


Threats & Malware

PayPal talks up its terrible payment service: ‘At least we’re not iCloud’

September 16, 2014

Via: threats-and-malware

PayPal definitely does not run iCloud. It did not, through a confusing backup process and potentially weak security system, make it easier for hackers to collect and leak hundreds of nude pictures of female celebrities, which were then widely disseminated on […]


Threats & Malware

Researcher says PayPal’s two-factor authentication is easily beaten

August 5, 2014

Via: threats-and-malware

A security feature offered by PayPal to help prevent accounts from being taken over by hackers can be easily circumvented, an Australian security researcher has found.


Cyber-crime

PayPal User Agreement Change – Phishing

June 27, 2014

Via: cyber-crime

Some users have received emails claiming to deliver news of the latest modifications regarding the PayPal user agreement. PayPal has not made any changes to the document, and the message is a phishing attempt used by cybercriminals to grab the […]


Mobile security

PayPal’s Two-Factor Authentication Bypassed

June 26, 2014

Via: mobile-security

A vulnerability in the authentication flow of the PayPal API web services allowed access to an account protected by PayPals two-factor authentication (2FA) mechanism. 2FA is a supplementary security measure which requires entering an additional code that is generally sent […]


Phishing

SCAM ALERT: “You Have (1) New Message alert!” from PayPal

November 14, 2011

Via: featured

Today, we’ve received another phishing email purporting to be from PayPal with spoofed email address. Scam subject: You Have (1) New Message alert! Scam message: Dear PayPal Member, We are contacting your regarding your PayPal Profile Information It has come […]


Phishing

PayPal Scam Email: “Loyal customers receive Gold Bonus”

July 27, 2011

Via: featured

Today, we got another PayPal scam email with attachment named “Congratulations.html“, as follow:   Deard PayPal Member, Please download the form and follow the instructions on your screen. NOTE: The form needs to be opened in a modern, javascript enabled, […]