PayPal users will most likely have received an email apparently from abuse@paypal.com with the subject PayPal account security measures. It is not from PayPal but a phishing scam from Beijing, China - the email IP origin.
What is phishing?
From PayPal’s security centre, “Phishing is a form of fraud designed to steal your identity. It works by using false pretenses to get you to disclose sensitive personal information, such as credit and debit card numbers, account passwords, or Social Security numbers.
One of the most common phishing scams involves sending a fraudulent email that claims to be from a well-known company. Phishing can also be carried out in person, over the phone, through fraudulent pop-up windows, and websites.”
The fraud email claims that there have been repeated unauthorised attempts at logging in to your PayPal account and therefore you need to go to a certain website to secure your account. Here’s the phishing email:
Military Grade Encryption is Only the Start
At PayPal, we want to increase your security and comfort level with every transaction. From our Buyer and Seller Protection Policies to our Verification and Reputation systems, we’ll help to keep you safe.
We have recently noticed one or more attempts to log into your PayPal account from a foreign IP address and we have reasons to believe that your account may have been hijacked by a third party without your authorization.
If you recently accessed your account while traveling, the unusual login in attempts may have been initiated by you. However, if you are the rightful holder of the account, click on the link below to log into your account within the above-mentioned period.
Click here to Secure your account
http://dezandgravertjes.nl/www.paypal.com/secure-login/
If you choose to ignore our request, you leave us no choice but to temporaly suspend your account.
We ask that you allow at least 72 hours for the case to be investigated and we strongly recommend to verify your account in that time.
If you received this notice and you are not the authorized account holder, please be aware that it is in violation of PayPal policy to represent oneself as another PayPal user. Such action may also be in violation of local, national, and/or international law. PayPal is committed to assist law enforcement with any inquires related to attempts to misappropriate personal information with the intent to commit fraud or theft. Information will be provided at the request of law enforcement agencies to ensure that perpetrators are prosecuted to the fullest extent of the law.
Thanks for your patience and understanding as we work together to protect your account.
Sincerely,
PayPal Account Review Department
PayPal, an eBay Company
As with fake DVDs, there are spelling errors in the phishing email. The scary thing is, the link provided is a redirection to what looks like the actual PayPal site. If you try entering some fake email and password such as “dieyoubloody@scammer.com”, like I did, you will still be taken to the page to enter your credit card details.
1 comment:
I was taken in by a phishing scam that compromised my PayPal account. The tricky thing was that the email I got wasn't from PayPal. It was a "greeting card" email that was supposed to be from Blue Mountain, only it wasn't. When you went to view the card the email downloaded some kind of media program on your computer. Then when I went into PayPAl and my bank to login to my accounts, the phishing program locked in on my banking passcode information. Fortunately I spotted it because something looked wrong when I typed in my pass word. So beware of opening ANYTHING unusual in your email.
Thanks for the post and for the blog.
DG
My website about losing weight and burning fat:
http://buyallionline.blogspot.com
Post a Comment