PayPal could be hacked thought the Firefox flaw!

The post has been submitted for moderation and won't be listed publicly until it has been approved.

January 4, 2008 - 4:36pm | Fraud | News |

| More

Aviv Raff, an Israeli leading security researcher, has warned, that a flaw in the Firefox 2.0.0.11 - Mozilla's latest version - logons' handling could redirect the entered username and password to the hacker's server instead of the real one and could therefore be used by identity thieves to dupe users into disclosing passwords.

A fake web page with a link to a trusted website (a bank, a PayPal account, webmail, etc.) could be created, too. After the victim's click on the link, the trusted web page will be opened in a new window, and a malware script will redirect this new window right to the attacker's web server, which will then return the specially crafted basic authentication response.

RuSar, reporter of Ecommerce Journal

Subscribe to Ecommerce Journal RSS feed

Tags keywords:

0 points

Share this story

What are these?

Comments on PayPal could be hacked thought the Firefox flaw!

Similar Articles on Ecommerce Journal by sections

Mozilla Firefox has the third part of the planet

Google Chrome takes the lead close to Firefox: Opera and Safari far behind

Users of Safari and Opera more vulnerable to cyberattacks

eBay presented OZtion its 250, 000 users

PC survey says women are more password savvy than men

PAYMENT SYSTEMS

PayPal sends links to phishing sites

What’s wrong with UK PayPal server?

PayPal introduces SMS authentication option

Anti-phishing Firefox add-on released by Liberty Reserve

Paypal upgrades its Payflow Pro

UBS offers IBM ZTIC to increase online banking security

VeriSign Technologies secures HSBC group

New banking oportunities for Caucasians

Secure e-banking promoted by Metrobank and IBM

Mobile banking with First Fidelity

Upgraded EMV authentication from MasterCard

American Express unveils the tool that says which retailer has bonuses

Age of password generating plastic cards

Card reader with Asian characters

Merchant Link announces new credit card security product

ECOMMERCE-CHECKED

Opening PayPal business account

How to fit a password, learn about the most popular passwords on the Internet

StrictPay, let’s strictly look at it (part 2)

hyperWALLET, a Canadian payment option (part 2)

ExoticFX review: a high success rate to make money online

INVESTMENT INDUSTRY

Egoldinvestment fake egold deposit page

Goldfinanceltd is a Fake Ltd

Beware of Libertychoice Fake Liberty Reserve Link

Realonlinebank real online scam

Tu Next Investment VS Magic Trader: battle of investment projects

PayPal could be hacked thought the Firefox flaw!

New era of cybercrime

Russians use Firefox to scam your e-gold and paypal accounts

Adobe add-on to Firefox turns out spyware

Are you sure you’ve installed the right Firefox 3.6? You may have a malware

Test your online banking page to make sure it’s secure

Meet Mozilla Firefox on mobile phones! What’s it like? - Review

Privacy mode of Firefox, Safari, Chrome and IE is sham: they do store your data

Mozilla’s do-not-track feature in a new browser is a piece of bullsh*t

10 places where you risk your PC of being Trojan infected

Nine security flaws patched in Firefox 3.0.9

How critical is vulnerability in Firefox 3.5.1?

Mozilla Firefox 3.6 review, what’s the new?

Google Chrome clickjacking vulnerability

Mozilla adds Tab Candy to the new Firefox browser

Interview With BricsFund.net

More questions answered: exclusive interview with Cliff Hopkins of PayPal

D. Jackson from E-gold: “We suggest… Ponzi schemes.” Exclusive interview for ECJ

President of HallBank, Kenneth Svenson.

FxEconomy: "We have reached all the goals we have striven for..."

A game server to pay $88 million to Blizzard for hosting World of Warcraft

Mozilla denies US government to ban Firefox add-on

Centaurus Financial fined $175,000 for misleading customers about ID theft

Microsoft thinks its browser monopoly protects the world from Google

PayPal may easily give away personal info of its users under authorities request

Affiliate with Ecommerce Journal
© 2006 eCommerce Journal, All materials copied should be followed by a back-link to http://ecommerce-journal.com/.
Ecommerce Journal - more about virtual economy|e-commerce news | articles | forex news | trading news | stocks news
| banks | payment systems | payment processors | plastic cards | e-currency exchange | investment | cyber fraud |
gambling news | poker news | casino news | betting news | news free-lance | jobs | CV | ecommerce law aspects |
economic news | trading news | e commerce interview | merchant news | e-commerce history | business news | internet news
Any violation will be reviewed as crime and will be reported to corresponding law authorities. News sitemap