Verified by Visa has a pretty bad design flaw: the recommended implementation us... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		chrisbolt on Aug 27, 2012 \| parent \| context \| favorite \| on: My Evil Undead Credit Card Verified by Visa has a pretty bad design flaw: the recommended implementation uses an iframe to load the page that prompts for your password, so it's not obvious if that iframe is legitimate or a phishing attack.

ljoshua on Aug 27, 2012 [–]

Also, VbV unloads a lot of the security burden to the consumer: http://news.ycombinator.com/item?id=1909862

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact