EV SSL Certificate Becomes Ineffective on PayPal Having XSS Bug

Harry Sintonen, a security investigator based in Finland, has found a XSS (cross-site scripting) flaw on paypal.com that could enable hackers to launch highly deceitful attacks, incorporating their own resource and material into the Website and stealing personal information from its visitors.

The XSS bug becomes even more critical as it dwells on a Web page that uses a widespread validation certificate for SSL (secure sockets layer). This certification leads the address bar on the browser to become green in color, so visitors are assured that the Website and its material are from PayPal.

The flaw was noticed in just a month following PayPal's publication of an approach to deal with phishing on the company's bl...

» SPAMfighter News - 27-05-2008

3 simple steps to update drivers on your Windows PCSlow PC? Optimize your Slow PC with SLOW-PCfighter!Email Cluttered with Spam? Free Spam Filter!

Press Releases - IT Security News

Go back to previous page
Next

Products

SPAMfighter
SLOW-PCfighter
FULL-DISKfighter
DRIVERfighter
PASSWORDfighter
VIRUSfighter
SPYWAREfighter
Anti spam / Anti virus server solutions

About

Company
Contact us
Press room
Support
Blog
Sign up for newsletters

Partnerships

Become a partner
Become a reseller
Find a reseller
Become an affiliate
White Label Software

Social media

Facebook
Twitter
Youtube
LinkedIn
Google+
© SPAMfighter 2003-2013    All rights reserved.    Privacy Statement    Sitemap