Security researcher Niklas Femerstrand has uncovered a vulnerability on American Express' Web site that could be used to steal credit card customers' login data.
"Attackers could read access credentials, steal cookies or inject malicious software onto the victim's system," the article states.
Go to "Developer function enables phishing at American Express" to read the details.https://o1.qnsr.com/log/p.gif?;n=203;c=204650394;s=9477;x=7936;f=201801171506010;u=j;z=TIMESTAMP;a=20392931;e=i
For regular security news updates, follow eSecurityPlanet on Twitter: @eSecurityP.