• You are here:
  • Home >
  • News >
  • Hacking and Cyber-crime

PayPal fixes phishing flaw

Online payment service changes code to block phishing attack

Written by Dinah Greek, Computeract!ve

19 Jun 2006

Paypal has blocked a sophisticated attack that tricked users of the online payment service into visiting a phishing site.

The flaw in the PayPal website allowed cyber-criminals to host a page on PayPal's website. The web pages appeared with a genuine SSL certificate to lull users into a false sense of security.

Malicious code on the fake page warned people that their PayPal account had been compromised. People were then redirected away from the genuine PayPal site to a phishing site hosted in South Korea.

Here victims were asked for their PayPal login information. According to internet monitoring company Netcraft, which first raised the alarm about the attack on Friday, people were also asked to enter their Social Security number and credit card details.

PayPal said as soon as it had been alerted to the flaw it changed some code on the PayPal website to block the scam. The online financial service also said it was working with the internet service provider that hosts the malicious site to get it shut down.

However PayPal said it had no idea how many people may have been victims of the scam.

Also see:
Fraudsters hijack PayPal's site in phishing attack

Tags:

Reader comments

More from Computeractive

News

The latest home computing news

Downloads

The best PC tools, applications and more

Reviews

Independent opinions on new hardware and software

Step-by-step guides

Easy-to-follow projects with pictures

PC Help

Solve PC problems with our Q&A

Videos

PC projects demonstrated and product reviews

Articles

An in-depth look at how to get the best from your PC

Magazine

What's coming up in Computeractive

Forums

Get help with your PC problems from our readers

Competitions

Your chance to win computing prizes

Shopping

Great deals on products, services and more

Computeractive CD Rom 10
All 26 issues of Computeractive from 2007 on one CD-Rom.

Ultimate Guide to PC Troubleshooting
Everything you need to know to solve your PC problems.

Driving Test Success
The UK's best-selling driving test software.

Computeractive Back Issues
Missed an issue? Click here to find a back issue

> More

Advertisement

Blogs

Windows Watch

Windows Watch

Keeping an eye on the latest XP and Vista news

More storage added to Windows Live Skydrive

19 Nov 2008The storage limit for Windows Live Skydrive is to be increased to a very respectable 25GB . As of just now my...

> More from the Windows Watch blog

Download Junkie

Download Junkie

Your daily dose of download discussion

Tweak all areas of your display hardware

21 Nov 2008Most current graphics cards will come with a number of different display options. These settings are often pre-configured on any card installed...

> More from the Download Junkie blog

Advertisement

Free email newsletters

Techno babble demystified...

[Display all definitions]

Or type in any computer-related word and click "Go"

Advertisement

Computeractive is not reponsible for content of Google adverts

Primary Navigation

© Incisive Media Ltd. 2008. Incisive Media Limited, Haymarket House,
28-29 Haymarket, London SW1Y 4RX, is a company registered in the United Kingdom with company registration number 04038503

Search computeractive.co.uk