Follow Slashdot blog updates by subscribing to our blog RSS feed


Forgot your password?

Submission Summary: 0 pending, 3 declined, 0 accepted (3 total, 0.00% accepted)


Submission + - Paypal's Lax Security Attitude 1

pandrijeczko writes: As a Paypal user, I have just received an apparently authentic email from Paypal that begins "Dear [Firstname] [Lastname]" with my correct proper name inserted in there. At the bottom of the email is the following statement:

How do I know this is not a Spoof email? Spoof or 'phishing' emails tend to have generic greetings such as "Dear PayPal member". Emails from PayPal will always address you by your first and last name. Find out more here.

I have just responded to Paypal explaining that it would take an average shell programmer five minutes to write a script with a simple regular expression to start an email with "Dear Fred Bloggs" if that email was being sent to "" and thus having the recipient's name at the top is NO proof of authenticity.

Does anyone else not find this totally astounding that a company handling people's money can make such a brash & ludicrous statement?

"Trust me. I know what I'm doing." -- Sledge Hammer