Apps

New and updated apps: Bing, Day One, Uber and more!

Apps

Best payment and wallet apps for iPhone: Square Wallet, PayPal, Passbook, and more!

News

Starbucks addresses security snafu with update to iOS app

News

Dropbox outage; hackers claim credit

Editorial

Older Mac webcams can spy on you, but don't tape yours over until you read this

News

PayPal launches Digital Gifts store, now selling iTunes vouchers

Apps

PayPal gets new design, ability to move money to your bank account

Accessories

Creep out your family this Christmas with a sweater and your iPhone

Apps

PayPal introduces new app which lets you pay ahead, open line of credit, and more

News

iPhone could be susceptible to SIM card attack, still waiting on clarification

News

SIM card hack announced... just enough to scare people

Security

Tango chat service hacked, 1.5 terabytes of phone, contact, and email data reportedly compromised

Apps

IFTTT goes mobile, wants to do your Internet heavy lifting for you

Apps

Thetrainline updated for iPhone 5 support, tickets on your phone coming soon

News

Apple Germany now accepting PayPal, gives you more ways to give them money

Anatomy of the Apple ID password reset exploit

Apple rolls out fix for password reset security hole, iForgot site back up

Newly discovered security hole lets attacker reset your Apple ID with only your birthday and email address

News

Apple turns on HTTPS for the App Store, closes numerous security vulnerabilities

Apps

iMore Editors' Choice: Fantastical, 123D Creature, Robot Unicorn Attack, and more

Paypal for iPhone Wi-Fi exploit discovered, patched

It seems a security hole in Paypal's iPhone app has been discovered that would allow hackers to access user's Paypal username and passwords over Wi-Fi. The "man-in-the-middle attack" let's the hacker come between the user input information and Paypal's servers. Although this is dangerous, it does require the hacker to be on the same Wi-Fi connection as the user in order to steal their information.

Airports, train stations, coffee shops, and other public Wi-Fi locations are the most susceptible. Paypal has issued a statement assuring if anyone does fall victim to this exploit, Paypal will cover 100% of all fraudulent charges. Paypal spokeswoman Amanda Pires had this to say -

"To my knowledge it has not affected anybody," Ms. Pires said. "We've never had an issue with our app until now."

Isn't that how it typically works, though? You don't have problems, until you do. And this is a large one. I'd highly suggest updating ASAP, the update is available via the App Store now.

(http://online.wsj.com/article/SB10001424052748703506904575592782874885808.html)

Footnote: 
[via WSJ]

Allyson Kazmucha

Help and how to editor for iMore. I can take apart an iPhone in less than 6 minutes. I also like coffee and Harry Potter more than anyone really should.

More Posts

 

0
loading...
0
loading...
0
loading...
0
loading...

← Previously

Apple's dead pixel policy for iPhone, iPad

Next up →

Verizon iPhone probably not coming next week

There are 3 comments. Add yours.

Chris says:

Way to go PayPal way to test your apps. It's a good app. Use it often, but this is weak!

excaliburca says:

I'm impressed Paypal IDed and fixed it as quickly as it did.