A Five-year-old Could Have Bypassed PayPal’s Account Authentication

The most commonly used online payment methods are not necessarily the safest option. PayPal, while globally used among consumers and retailers, is such an example. There is a newly discovered authentication bug which allows hackers to bypass PayPal’s 2FA security. Not the news most people were looking forward to, but third-party service providers are inherently insecure.

While it is good to see PayPal take these authentication bug submissions to heart, although they should not be possible in the first place. The company did close the security hole, but that does not mean the platform is fully safe from now on. Security experts are seriously concerned about what other skeletons may be in the PayPal closet.

PayPal Authentication is An Utter Joke

In fact, some people are wondering who is conducting PayPal’s security audits, to begin with. Bypassing 2FA turned out to be way too easy, as it did not even require specific coding skills. When logging into the service through 2Fa, there is an option to “try another way.” Clicking this option yielded some unexpected options.

As most users are well aware of, PayPal usually asks for two answers to as many security questions. However, the URL for this page

Read more ... source: NewsBTC USA

Let's block ads! (Why?)

Powered by Bitcoin Central