Well-known and prolific bug hunter Mark Litchfield has unearthed a pretty big flaw in PayPal Manager, which would allow attackers to hijack a merchants' account by changing their password, and consequently have access to their and their customers' personal information as well as being able to place orders from it.
PayPal users based in the UK are being targeted with a spoofed PayPal email offering a reward for participating in a "new survey program," warns Malwarebytes.
Extremely well-made fake notifications claiming the recipients' PayPal transaction was declined are doing rounds and trying to trick users sharing personal and financial information.
Thirteen defendants pleaded guilty in federal court in San Jose on Friday to charges related to their involvement in the cyber-attack of PayPal’s website as part of the group Anonymous.
Fake PayPal emails claiming recipients will have limited access to their account because they didn’t provide enough information have been landing for the last few days in inboxes around the world.
Reading our newsletter every Monday will keep you up-to-date with security news.
Receive a daily digest of the latest security news.