Joshua Rogers, a teenage whitehat based in Australia, has found an extremely simple way to bypass PayPal's two-factor authentication feature.
In the wake of the revelation of a flaw that allows attackers to bypass PayPal's two-factor authentication feature, the e-payment giant has made it temporarily impossible for users who enabled it to log into their PayPal account via the PayPal mobile app and on certain other mobile apps.
CYREN published its April 2014 Internet Threats Trend Report.
Well-known and prolific bug hunter Mark Litchfield has unearthed a pretty big flaw in PayPal Manager, which would allow attackers to hijack a merchants' account by changing their password, and consequently have access to their and their customers' personal information as well as being able to place orders from it.
PayPal users based in the UK are being targeted with a spoofed PayPal email offering a reward for participating in a "new survey program," warns Malwarebytes.