IE, Chrome, Safari duped by bogus PayPal SSL cert

http://www.theregister.co.uk/2009/10/05/fraudulent_paypay_certificate_pu...

A specially crafted SSL certificate was created that included a null
character in the Subject dn. This certificate was able to fool Internet
Explorer, Chrome and Safari into thinking that they were connected to a
legitimate Paypal site, when in fact, they were not.

Although the article strongly suggests all users switch to Firefox, IAS
does not have an official policy on which browser should be used.

Our recommendation is for the user to be aware of the issues surrounding
their preferred web browser. Please keep your browser up to date with
the latest patches.

Thanks,
ep