Low End Mac Reader Specials
TypeStyler For Mac OS X is Now Shipping! Download The Free Fully Functional 60 Day Tryout at www.typestyler.com
Don't install Parallels to play poker online! Poker Mac will show you how
to download and install a native Mac poker application such as Full
Tilt Poker Mac.
Laptop Hardware Provided by TechRestore - Overnight Mac & iPod Repairs.
Compare products like desktop computers, apple laptops, apple macs, and LCD Monitors side by side! All the information and reviews to make the best purchasing decision for new mobile phones, sat nav systems, or MP3 players. The Ciao online shopping community makes searching products easy for you.
Mac Musings
PayPal Insecurity
Dan Knight - 2002.08.08 - Tip Jar
They also need to beef up security.
As I discovered on Tuesday, someone using the email address lilbb@spils.com (a free email service) managed to hack my password and add his/her email address at about 3:40 p.m. Central Time on Sunday. This individual then removed my email addresses, blocking me from access to my business account.
Fortunately, I usually have less than $100 in my PayPal account. I try to keep enough there to cover some hosting and access fees that I pay with my PayPal debit card.
Unfortunately, that PayPal account is also linked to my business checking account. On the up side, this means I can send funds via PayPal even if I don't have enough in my PayPal account. PayPal will simply do an electronic funds transfer from my Fifth Third bank account, and then forward the funds to the recipient.
So all it takes for someone to clear out my business account is guessing my password, adding their email address, and then removing my access to the account before I have a chance to respond. And that's exactly what happened.
lilbb then proceeded to clean me out with a $418 and a $1,026 transaction. Another $1,844.70 was attempted, but those funds didn't clear due to insufficient funds.
We've sent out a warning to others, suggesting anyone who uses PayPal reconsider their current password. We thought ours was good, since it wasn't a dictionary word, but that wasn't enough. We recommend using upper case and lower case letters along with numbers and punctuation - all allowed by PayPal - to create a more secure password.
We've also sent email to spils.com about the hack, but we have no idea how helpful they may be. We're also enlisting the assistance of Web savvy users, asking them to check their site logs - if their logs track user IDs, they may be able to help us track down lilbb.
We sure hope so, and also that the money can be recovered. We've just lost the funds needed to pay our bills.
Where Next?
We're going to think long and hard about using PayPal in the future. The system simply isn't secure enough if all it takes is hacking a password to rob someone blind.
If we do decide to continue using PayPal, we will be smart about it and set up a completely separate checking account linked to our PayPal account. That way if someone should hack our account again, our potential loss could be greatly reduced by keeping that account balance very, very low.
We strongly urge the folks at PayPal to beef up security. It's very convenient to be able to add more email addresses to an account with a single password, but it also creates the potential for situations like this.
PayPal needs to provide more security, such as requiring use of a code emailed to an address already on the account before allowing use of any new email address. That simple step would have eliminated our problem.
PayPal should also flag suspicious behavior, such as a lightly used account suddenly being used for several transactions totaling over $3,300. Credit card companies do that kind of thing; PayPal should also.
That said, PayPal has been very helpful in locking the account. I've already filed affidavits electronically about this mess. The only disappointment is that PayPal's investigators have yet to call me back. It's been two days, I'm out $1,500 or so, and they need to do better on callbacks.
Do I recommend against using PayPal? No, or at least not yet. The service is very convenient. Users need to be much more aware of the pitfalls. Make sure your password is obscure, and don't keep much money in the bank account linked to your PayPal account.
Dan Knight has been using Macs since 1986, sold Macs for several years, supported them for many more years, and has been publishing Low End Mac since April 1997. If you find Dan's articles helpful, please consider making a donation to his tip jar.
Recent Mac Musings
- MacBook Pro a Revelation, 02.08. After using G4 Macs for over a decade, spending a weekend prepping a first generation MacBook Pro was a real eye opener.
- Is the iPad Apple's True Successor to the 12" PowerBook?, 02.02. The iPad has the same 1024 x 768 display as generations of G3 PowerBooks, iBooks, and the 12" PowerBook G4 - but it offers a whole lot more than any laptop ever has.
- iPad priced from $499, 01.27. The 9.7" iPad has a custom 1 GHz Apple CPU, runs iPhone apps, ships in 60 days, and defines a whole new category of products.
- Record Mac Sales Culminate Five Years of Growth, 01.26. Mac unit sales have tripled since 2005, led by MacBooks - but don't count out desktops just yet.
- More in the Mac Musings index.
Links for the Day
- Mac of the Day: 'WallStreet' PowerBook G3, May 1998 - WallStreet offered 3 screen sizes and CPU speeds from 233 to 292 MHz.
- Group of the Day: Mac UK is for Mac users in the United Kingdom.
- February 9 in LEM history: 00: Think choices - Promoting the Macintosh - 01: Apple vs. Mac clones - 05: Apple and the $100 laptop - Yojimbo - Core Duo vs. G5 - 07: The story behind After Dark - Microsoft Office 2007
- Support Low End Mac
Recent Content on Low End Mac
- Do We Really Need Another Mac Email Client?, Charles W. Moore, Miscellaneous Ramblings, 02.08. Mac users have a host of free and low-cost email clients to choose from. Does Brent Simmons' 'Letters' project make any sense at all?
- 42 Reasons a Netbooks Is Better than an iPad, Hard Drive Upgrade Value, Faster Netbooks, and More, The 'Book Review, 02.05. Also why the iPad can't compete with netbooks, 802.11n WiFi card for older Intel MacBooks and Mac minis, and a DJ keyboard cover for MacBooks.
- iPad Perfect for Handheld Computing, John Hatchett, Recycled Computing, 02.05. You can hold the iPad in one hand and operate it with the other, giving it real advantages over a laptop computer.
- iPad Targets Netbook Users, iPad 'Flaws' Don't Matter, In-page Search for iPhone Safari, and More, iNews Review, 02.05. Also FSF considers iPad 'iBad' for freedom, Touch Mouse app turns iPhone into wireless keyboard and trackpad, privacy screen for iPhone, and more.
- Touch Shifts the Apple Empire, Tim Nash, Taking Back the Market, 02.05. Apple dominates mobile computing, and it will be difficult for competitors to match the value of the iPad.
- 90% of Premium PCs Are Macs, OS and Browser Market Share, Chrome Browser to Dominate, and More, Mac News Review, 02.05. Also 27" iMac too popular for supply, eco-friendly 2 TB hard drive, Puppy Linux for PowerPC Macs, 6-core Mac Pro rumored, and more.
- iPad Should Support a Stylus, CoolBook Quiets MacBooks, Puppy Linux for PowerPC Macs, and More, Charles W. Moore, Miscellaneous Ramblings, 02.03. Also the iPad as a genie in a bottle, Eudora Classic 6.2, notebook battery life, and more uses for 'obsolete' technology.
- More links in our archive.
Recent Deals
- Best 15" MacBook Pro Deals, 02.02. Used 2 GHz, $700; 2.4, $999; refurb 2.53, $1,449; 2.8, $1,699; 3.06, $2,199; new 2.53, $1,610; 2.66, $1,839; 2.8, $2,109; 3.06, $2,550; more.
- Best G3 iMac Deals, 02.02. 500 MHz CD-ROM, $40; 450 MHz DVD-ROM, $60; 600 MHz CD-ROM, $230 shipped; 700 MHz CD-RW, $300 shipped.
- Best eMac Deals, 02.02. 1 GHz SuperDrive, $269; 1.25 Combo, $100; SD, $360; 1.42 GHz Combo, $299; SD, $439.
- Best Mac mini Deals, 02.01. Used 1.25 GHz G4 Combo, $369; 1.5, $399; Core Solo, $399; 1.83 GHz Core Duo SD, $439; new 2.26 GHz nVidia, $580; 2.53 GHz, $759; Server, $985.
- Best iBook G4 Deals, 02.01. 12" 1.07 GHz Combo, $200; 1.33 GHz, $259; 14" 1.42 GHz SuperDrive, $399.
- Best Titanium PowerBook G4 Deals, 02.01. 800 MHz Combo, $285; 867 MHz SuperDrive, $400; 1 GHz Combo, $549.
- Best 13" MacBook & MacBook Pro Deals, 01.29. Used 1.83 GHz, $570; 2.0, $599; 2.4 GHz, $800; 2.26 MB, $849; new, $925 after rebate; Pro, $1,108, 2.53, $1,399 a/r.
- Best Power Mac G5 Deals, 01.29. 1.8 GHz single, $399; dual, $479; 2.0, $549; 2.5, $609; 2.7, $799; 2.3 GHz dual-core, $709; 2.5 GHz Quad, $939.
- Best Mac OS X 10.0-10.3 Deals, 01.29. Mac OS X 10.0, $30; 10.1, $20; 10.2, $50; 10.3, $50; 10.3 Server, unlimited users, $130.
- More deals in our archive.
About LEM | Support | Usage | Privacy | Contacts
Navigation
Used Mac Dealers
Apple History
Video Cards
Email Lists
Favorite Sites
MacSurfer
MacMinute
MacInTouch
MyAppleMenu
InfoMac
Macs Only!
The Mac Observer
Accelerate Your Mac
RetroMacCast
PB Central
MacWindows
The Vintage Mac
Museum
DealMac
DealsOnTheWeb
Mac2Sell
ramseeker
Mac Driver Museum
JAG's House
System
6 Heaven
System 7 Today
the pickle's Low-End
Mac FAQ
Abandonware
Petition
Mac vs. PC Info
Affiliates
The Apple
Store
Mac
Connection
B&H
MacMall
TechRestore
ExperCom
Crucial
Memory
batteries.com
MacMinute
MacInTouch
MyAppleMenu
InfoMac
Macs Only!
The Mac Observer
Accelerate Your Mac
RetroMacCast
PB Central
MacWindows
The Vintage Mac
Museum
DealMac
DealsOnTheWeb
Mac2Sell
ramseeker
Mac Driver Museum
JAG's House
System 6 Heaven
System 7 Today
the pickle's Low-End
Mac FAQ
Abandonware
Petition
Mac vs. PC Info
Mac Connection
B&H
MacMall
TechRestore
ExperCom
Crucial Memory
batteries.com
Advertise
