Brian Krebs criticises PayPal’s security as authentication flaws exposed • The Register

“The attacker had merely called in to PayPal’s customer support, pretended to be me and was able to reset my password by providing nothing more than the last four digits of my Social Security number and the last four numbers of an old credit card account,” Krebs explained in a blog post.

The second of the two hacks happened even though PayPal had earlier promised to monitor the reporter’s account for suspicious activity following the first attack just hours before, said the reporter.

Source: Brian Krebs criticises PayPal’s security as authentication flaws exposed • The Register

Leave a Reply

Your email address will not be published. Required fields are marked *

11 + four =