PayPal advises Mac users not to use Safari

“PayPal is warning users that they are better off using an alternative if they want to avoid fraud,” Julio Franco reports for TechSpot.

“Now, this doesn’t necessarily mean Safari is a bad option, not even an insecure browser, but in the eyes of PayPal it is lacking two important anti-phishing security features that ‘Internet Explorer 7 or 8 when it comes out, Firefox 2 or Firefox 3, and indeed Opera’ already pack in. The two features mentioned by Michael Barrett, PayPal’s chief information security officer, are a built-in phishing filter and an anti-phishing technology, called Extended Validation certificates,” Franco reports.

“PayPal happens to be in a very unique position for making an educated assessment regarding web security, but we don’t see either of those two technologies making miracles for saving users from fraudsters,” Franco reports. “At the end of the day, there is no better anti-phishing filter than yourself, being aware that scammers are out there and they are trying to get you.”

Full article here.

[Thanks to MacDailyNews Reader “Ampar” for the heads up.]


  1. sigh I hate the antiphishing filter in IE it takes so bloody long to antiphish. Good thing I dont have to worry about it on my mac. Besides not like I surf stupidly anyway so im not worried at all.

  2. Looks like I won’t be using PayPal anymore, as if I did. If this really becomes an issue I trust Apple will take the necessary measures to make Safari as secure as it needs to be.

  3. Yes, Safari doesn’t have anti fishing filters and that is why I use it. The only anti fishing filter that works is the user. Everyone what to create software to protect the user for the user’s own stupidity.
    I say let the stupid learn the hard way, it’s called tough love. The ones that never learn the lessons, they really should be using the internet in the first place or their banks and Credit card companies should just not let them have to their account information or even access to spend anything on-line at all.

  4. An anti-phishing filter should be something very similar to the pop-up blocker on Safari. Shift-Cmd-K toggles it on or off when needed. Clearly, Apple can make a very smooth and elegant solution to this, which would be intuitive and unobtrusive to users, and provide the type of safety blanket that ignorant users (and with expanding Mac user base, greater and greater numbers of them) need very much.

    Telling us to point our DNS to openDNS is redundant. Those of us who are skilled enough to actually do it (practically everyone reading MDN) will never fall for a phishing lure.

    On that subject, I must say, I always click on those phishing links. Out of curiosity, I go to the root of the web server masquerading as a bank, ebay, paypal, etc. Oftentimes, it is an unsuspecting website for crocheting patterns, or some Guatemalan hiking, or some small, semi-amateur work where password was hacked and phisher’s site uploaded. I usually try to notify the site owner that they had been hacked. It doesn’t help much, though, since these phishing sites need no more than two days to stay up to collect what they’re looking for.

    Anyway, back on the subject; next rev of Safari will have to have a phishing filter.

  5. I’m a Mac user and I depend on PayPal for my income. There has never been a more-frustrating experience! But it is very difficult or impossible these days for a webmaster based outside the US, to get an account with a payment gateway. I’m trying very hard to set up an opposition company that will take its customers seriously and provide a professional service but potential investors don’t understand the situation and are unwilling to commit. So far! In the meantime, I recommend no one take seriously anything that PayPal says.

Reader Feedback

This site uses Akismet to reduce spam. Learn how your comment data is processed.