all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Anyone else think it's crazy how bad PayPal account security is?

Add to bookmarks
Dec. 16, 2023, 5:54 p.m. | /u/Berowulf

cybersecurity www.reddit.com

Specifically referring to logging in via one time codes.
It's a feature that is enabled for all users and you cannot disable it.
Every single PayPal user is an easy target for SIM swapping.
Most organizations consider SMS 2-factor as unsecure and require actual authenticators, and that's fucking 2 factor, at least in that scenario the attacker would have to know your password first.

Hopefully business accounts aren't forced to use this feature...

Anyways, for all those who use PayPal, …

account account security authenticators bad cybersecurity easy factor feature logging logging in organizations paypal security sim sim swapping single sms target

Visit resource

More from www.reddit.com / cybersecurity

How to Detect a GIFshell Attack: Step-by-Step Guide 3 hours ago | www.reddit.com
attack cybersecurity detect gifshell +1
Security Engineer 10 hours ago | www.reddit.com
account analyst cybersecurity detect +18
Active Directory Security A Concern? 11 hours ago | www.reddit.com
active directory active directory security cloud cybersecurity +8
NSA security designer goes to jail for sharing top secret files 13 hours ago | www.reddit.com
cybersecurity designer files goes +7
Thousands of Airsoft players under threat after data breach 13 hours ago | www.reddit.com
breach cybersecurity data data breach +3
Hackers of all kinds are attacking routers across the world | TechRadar 13 hours ago | www.reddit.com
cybersecurity hackers routers world
🤣 Ivanti is hiring an Offensive Security Engineer 14 hours ago | www.reddit.com
assessment cybersecurity old team +3
Migrating to Australia as a cybersecurity consultant 17 hours ago | www.reddit.com
australia clients consultant cybersecurity +11
Why is an entry level job so hard to get? 18 hours ago | www.reddit.com
automatic cybersecurity don down +7

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Offensive Security Engineer

@ Ivanti | United States, Remote
View on infosec-jobs.com

Senior Security Engineer I

@ Samsara | Remote - US
View on infosec-jobs.com

Senior Principal Information System Security Engineer

@ Chameleon Consulting Group | Herndon, VA
View on infosec-jobs.com

Junior Detections Engineer

@ Kandji | San Francisco
View on infosec-jobs.com

Data Security Engineer/ Architect - Remote United States

@ Stanley Black & Decker | Towson MD USA - 701 E Joppa Rd Bg 700
View on infosec-jobs.com
View more jobs