PayPal Holdings on Friday acknowledged that a data breach at recently acquired payments processor TIO Networks compromised the personally identifiable information of roughly 1.6 million customers.
Payment services firm put out patch to stop hackers stealing OAuth tokens but only after security researcher persisted in telling them the service was vulnerable.
The research firm AppRiver reports a new PayPal phishing scam is making the rounds using a phony security message to obtain personally identifiable information.
Michael Stepankin, also known as Artsploit, has disclosed a major vulnerability in PayPal's business site, allowing remote code execution.
ICYMI: New PayPal spam; WEF top risks; Ukraine cyber-attack; OpenSSH vulnerabilities; IoT Doorbell flawed;
The latest In Case You Missed It (ICYMI) looks at a new type of PayPal spam, WEF names cyber-attacks as one of its top three threats, Ukraine suffers major cyber-attack on main airport, OpenSSH open to MitM attacks and the IoT doorbell that reveals its owners wifi key.
Egyptian cyber-security researcher Yasser Ali has won US$ 10,000 (£6,384.28) in a bug bounty after finding a flaw in the PayPal global payment system that would allow any of its 150 million-plus customer accounts to be hijacked with a single click.
17-year-old hacker divides industry opinion by going public before PayPal fixes problem.
Two-factor authentication can be bypassed on some of PayPal's mobile applications.
Good email hygiene is the answer to the phishing challenge - Sarb Sembhi, Incoming Thought analyst