PayPal critical Flaw allows to steal all your funds

Discussion in 'other security issues & news' started by Minimalist, Aug 26, 2015.

  1. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    5,061
  2. ky331

    ky331 Registered Member

    Joined:
    Jun 25, 2008
    Posts:
    143
    Bottom-line to the article:

    The expert ethically reported the flaw to Paypal that promptly fixed it, this is the Time Line of the bug:

    • Vulnerability Discovery: 19/Jun/15 2:27 AM
    • Vulnerability Reported: 19/Jun/15 7:10 AM
    • Remediation Notification: Aug 25, 2015 at 5:44 AM
    Thanks Paypal Security team for the good coordination the fast responses for Emails.
     
  3. TairikuOkami

    TairikuOkami Registered Member

    Joined:
    Oct 10, 2005
    Posts:
    2,509
    Location:
    Slovakia
    A little misleading, it applies to users, who would use a credit card option during the payment, not for people who would pay directly by paypal.
     
  4. fax

    fax Registered Member

    Joined:
    May 30, 2005
    Posts:
    3,728
    Location:
    localhost
    Promptly? More than 2 months to fix a critical issue. Am I missing something? o_O
     
  5. amarildojr

    amarildojr Registered Member

    Joined:
    Aug 8, 2013
    Posts:
    1,977
    Location:
    Brasil
    I see what you did there! :p hahahahaha

    It was a joke ;)
     
  6. PallMall

    PallMall Guest

    Well, I happen as well as you to consider a 2 months' delay as a bad example of promptitude :p
    By the way, this thread makes me discover the site securityaffairs.co which seems very interesting.
    Concerning PayPal I had closed my account when the companyhad decided to obstruct help funds for ProtonMail.

    EDIT -
    Darn, I missed the sarcasm!
     
Loading...