As part of an effort to combat phishing, PayPal plans to block older versions of Internet Explorer and Firefox and other “unsafe” browsers from accessing the online payment site. In a paper released at an RSA security conference this month in San Francisco, PayPal said there is a significant number of site visitors using browsers as old as Internet Explorer versions 3 and 4, released in August 1996 and September 1997, respectively. Such “unsafe browsers” lack the latest technology for blocking phishing sites and do not support Extended Validation Certificates, which are digital certificates that establish Websites as trusted during online transactions. Phishing is a deceptive practice used by Web criminals to acquire personal information, such as usernames, passwords and credit card details. Phishers often pose as legitimate businesses in emails to lure victims to fraudulent sites where they are asked to input their personal data. PayPal is among the favorite targets of phishers, along with eBay and online banks.

“At PayPal, we are in the process of re-implementing controls, which will first warn our customers when logging in to PayPal from those browsers that we consider unsafe,” the eBay-owned payment service said. “Later, we plan on blocking customers from accessing the site from the most unsafe — usually the oldest — browsers.” PayPal in February warned people that Apple’s Safari browser didn’t have the necessary security to protect Web users and recommended the latest versions of Microsoft’s Internet Explorer and Mozilla’s Firefox.

Source: InfoWeek