Press Release Summary = For over a year scammers and phishers may have been using a PayPal security flaw to obtain the full names of PayPal users.
Press Release Body = Natick, Massachusetts - March 25, 2006 - AuctionBytes (http://www.auctionbytes.com) today reported a major security flaw on PayPal\'s website could help scammers who send out \"phishing\" emails by allowing them to determine a PayPal member\'s full name and include it in hoax emails, giving them an air of legitimacy.
AuctionBytes discovered the URL with the vulnerability on Friday evening when it was sent in by an anonymous user who stated he was told the security hole had been in place for about 1 year and that many scammers were aware of its existence. Adding a PayPal member\'s email address to the end of that specific PayPal URL (https://www.paypal.com/affil/pal
Web Site = http://www.auctionbytes.com
Contact Details = For More Information Contact: David Steiner Natick, Massachusetts Email - dsteiner@auctionbytes.com Phone - 1-508-655-5697
2025
