PayPal Plugs Cross-site Scripting Hole That Sidestepped Stronger Security

PayPal has patched a critical cross-site scripting vulnerability that a Finnish researcher disclosed late last week. The vulnerability’s potential impact was even more serious than usual because the page was guarded by an Extended Validation (EV) SSL certificate. PayPal was one of the first commercial sites to use an EV, introduced to reassure users that an online site is legitimate and not a fake hosted by phishers. The payment arm of eBay Inc. said today it had plugged the hole, which was not used in any phishing attacks.”]

Source: https://www.csoonline.com/article/2122743/paypal-plugs-cross-site-scripting-hole-that-sidestepped-stronger-security.html

Something Fresh

What to Know About The Jamaica Data Protection Act

St Vincent and the Grenadines embracing CariSECURE

Jamaica's Gov’t Looking to Finalize Data Protection Act Regulations

What People Reading

Feedback and data-driven updates to Googles disclosure policy

RSA: Geolocation shows just how dead privacy is

Intel Confirms Unauthorized Access of Earnings-Related Data

Launching AnonLeaks, Ready To Dump More HBGary E-mails!

Complacency Increases Security Risk

Categories

Partners

Just add here your partners image or promo text