Phishing scam uses PayPal secure servers
A cross-site scripting flaw in the PayPal website allows a phishing attack to masquerade as a genuine PayPal login page with a valid security certificate, according to security researchers.
Fraudsters are exploiting the flaw to harvest personal details, including PayPal logins and credit card details, according to staff at Netcraft, an internet services company in Bath.
At PC Advisor.
[ Read more ]
By subscribing to our early morning news update, you will receive a daily digest of the latest security news published on Help Net Security.
With over 500 issues so far, reading our newsletter every Monday morning will keep you up-to-date with security risks out there.