- CNET NETWORKS UK BUSINESS SITES:
- atlarge.com
- BNET UK
- silicon.com
- SmartPlanet.com
- ZDNet.co.uk
Info thieves hosted malicious code on official website...
By Joris Evers
Published: 19 June 2006 08:25 BST
PayPal has fixed a flaw in its website to block a sophisticated scam designed to obtain sensitive data from members, the payment service said on Friday.
By exploiting the flaw, attackers were able to redirect people from a PayPal web page to an online trap located in South Korea, a representative for the service said. The page actually has a real PayPal URL but hosts malicious code that presents a message warning members that their account had been compromised. It then redirects them to a "phishing" website.
At the malicious, information-thieving website, people are asked for their PayPal login information, experts at Netcraft, an internet monitoring company in England, said in an advisory. Subsequently, the scammers are urged to enter their Social Security number and credit card details, Netcraft said.
A PayPal spokeswoman said in an interview: "As soon as we became aware of this scheme, we changed some of the code on the PayPal website. So this scheme, or any scheme like it, can no longer be effective."
PayPal, a unit of online auctioneer eBay, is working with the ISP that hosts the malicious site to get it shut down, the spokeswoman added. The company has no information on how many people may have fallen victim to the scam, she said.
Joris Evers writes for CNET News.com
My exciting client requires a Webmaster. This exciting 3 month + contract based in the Thames Valley, requires experience of Intelligent Content ...
My client based in Maidenhead is currently looking for a Website Developer to join the team who specialise in building websites for their clients. ...
Are you a Website Developer? You will need strong ASP.NET/C# Website development experience and will ideally have front-end web skills in CSS, XHTML, ...
CIO50 2008
The silicon.com CIO50 2008 profiles the most influential and innovative tech chiefs in the UK across all industries and organisation size, from the biggest FTSE100 companies to high growth dot-com start ups and the public sector. The list was voted on by the UK CIO community and a panel of experts. Find out more in our latest special report.
Stories from the web...
Copyright ©1995-2008 CNET Networks, Inc. All rights reserved. Top of page
Digg
Slashdot
Del.ici.ous
Stumble
Reddit
RSS Feeds
Steve Boyle
Woolly risk analysis is hastening a housing crash
Comment: Lenders need a sane approach to avert a crisis
Carol Wheatcroft
Will consumers always want free banking?
Targeted, bundled services will be the way to profit...
Steve Boyle
Are rogue traders an inevitable evil?
Opinion: Managers must increase diligence to beat fraud
Julian Goldsmith
Profile: Nottingham Building Society head of IT Jack Cutts
'On the wide accountancy'...
Steve Boyle
Why you should be outsourcing your data centres
Concentrate on the core business...
Bob McDowall
Fixed-income electronic trading faces bleak 2008
Trading platforms likely to draw in their horns for downturn