Thursday, January 21, 17:22
Home security PayPal: Hackers misused accounts and charged holders

PayPal: Hackers misused accounts and charged holders

Reportedly, there is an error in Google Pay, which some have discovered hackers and take advantage of it to they buy products online and charge foreign PayPal accounts with unauthorized charges.

Since Friday, many users report that they see strange transactions in PayPal's history that are supposed to come from account on Google Pay.

Such reports have appeared on many platforms, such as forum of PayPal, the RedditThe Twitter, and Russian and German forum Google Pay support.

According to the victims, The hackers leverage Google Pay accounts to purchase products using their linked PayPal accounts. The published screenshots and the testimonies of the victims show that most of the illegal transactions take place in the shops of USA and especially in stores Target.

PayPal: Hackers misused accounts and charged holders

Most of them victims it seems to be German users.

Hackers have made purchases worth thousands of euros. Some transactions (from a single account) exceed € 1.000.

The error exploited by the hackers has not yet been known. PayPal said it is conducting an investigation. THE Google has not commented.

Yesterday, a German security researcher, Markus Fenske, claimed on Twitter that the current error looks like that for which he and his colleague Andreas Mayer had informed PayPal in February 2019. However, service did not consider it her priority to correct it.

According to Fenske, the problem starts with link your PayPal account to a Google Pay account. When accounts are linked, PayPal creates one virtual card, with its own card number, expiration date and CVC.

When a Google Pay user chooses to make a payment using money from their PayPal account, the transaction is charged through this virtual card.

"If the virtual card were for POS transactions only, there would be no problem, but PayPal allows it to be used for online transactions," the researcher said.

PayPal: Hackers misused accounts and charged holders

Fenske believes that hackers have discovered the elements of these virtual cards and are using them for unauthorized transactions on Internet.

This information could be obtained by monitoring it phone / screen of the user and with malware infecting her device a user. Also, the attacker could guess the data.

"The attacker could make a brute-force attack, obtain the card number and the validity date, which lasts about a year," Fenske said. "This limits the search field".

"The CVC doesn't matter," he added. "Everything is accepted."

PayPal is investigating the case

Although Fenske was the first to announce her most likely cause attack, the PayPal security team started research on unauthorized transactions.

PayPal staff looks at everything data, including the attack scenario described by Fenske today and the report he had presented in February 2019.

“Customer account security is a top priority for company"A PayPal spokesman said. “We look at and evaluate them all information and we will take appropriate measures to further protect our customers. "


Please enter your comment!
Please enter your name here

Absent Mia
Absent Mia
Being your self, in a world that constantly tries to change you, is your greatest achievement



Bill Gates: Will he work with Biden on COVID-19 / climate change?

Microsoft co-founder Bill Gates said on Twitter that he is looking forward to working with the new US President, Joe Biden, and ...

What are the rumors circulating about the iPhone 13?

Apple iPhone 13 will have a redesigned Face ID system that will have a smaller notch at the top of the screen, ...

Biden: How was the political transition in the US captured on social media?

As Joe Biden was sworn in as President of the United States, this important political transition was captured on popular social media. On January 20, ...

CentOS ceases to be supported but RHEL is offered for free

Last month, Red Hat caused a great deal of concern in the Linux world when it announced the discontinuation of CentOS Linux.

Microsoft Office 365 employee passwords leaked online!

A new large-scale phishing campaign targeting global organizations has been found to bypass Microsoft Office 365 Advanced Threat Protection (ATP) and ...

COSMOTE and Microsoft provide new cloud solutions for businesses

COSMOTE and Microsoft expand their cooperation, offering even more advanced and high quality cloud solutions, in large and small ...

Cyber ​​attacks in Eastern Europe are on the rise!

The cyber-attacks that have taken place in many US government agencies and companies in recent months have caused concern in the developing countries of ...

Tesla reduces the prices of the Model 3 in Europe

Tesla has reduced the prices of the Model 3 in many European markets, which reductions could be partly linked ...

iOS, Android, XBox users in the crosshairs of a new malvertising campaign

Recently a new malvertising campaign was discovered that targets users of mobile and other connected devices and uses effective ...

Microsoft: "Zero trust" protects against sophisticated hacking attacks

According to Microsoft, the techniques used by the hackers of SolarWinds, were sophisticated but common and preventable. To avoid future attacks ...