Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!


Forgot your password?

Submission Summary: 0 pending, 3 declined, 0 accepted (3 total, 0.00% accepted)

Check out the new SourceForge HTML5 internet speed test! No Flash necessary and runs on all devices. ×

Submission + - Paypal's Lax Security Attitude 1

pandrijeczko writes: As a Paypal user, I have just received an apparently authentic email from Paypal that begins "Dear [Firstname] [Lastname]" with my correct proper name inserted in there. At the bottom of the email is the following statement:

How do I know this is not a Spoof email? Spoof or 'phishing' emails tend to have generic greetings such as "Dear PayPal member". Emails from PayPal will always address you by your first and last name. Find out more here.

I have just responded to Paypal explaining that it would take an average shell programmer five minutes to write a script with a simple regular expression to start an email with "Dear Fred Bloggs" if that email was being sent to "fred.bloggs@domain.com" and thus having the recipient's name at the top is NO proof of authenticity.

Does anyone else not find this totally astounding that a company handling people's money can make such a brash & ludicrous statement?

Slashdot Top Deals

"Just think of a computer as hardware you can program." -- Nigel de la Tierre