Slashdot is powered by your submissions, so send in your scoop

 



Forgot your password?
typodupeerror
What's the story with these ads on Slashdot? Check out our new blog post to find out. ×
Bug

Submission + - Exploiting Cashier-as-a-Service Providers->

SydShamino writes: Researches at Indiana University and Microsoft found and exploited flaws in the communication between web stores and third-party cashiers (Amazon Payments, PayPal, Google Checkout) to order items for free, or at prices of their choice. "We believe that it is difficult to ensure the security of a CaaS-based checkout system in the presence of a malicious shopper" said the study co-author. The identified flaws have been reported and fixed, but they feel that more, similar flaws are likely given the complicated nature of many web-based transactions.
Link to Original Source
This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Exploiting Cashier-as-a-Service Providers

Comments Filter:

Statistics means never having to say you're certain.

Working...