PayPal phishing attempt

Submitted by Kai on Wed, 2007-12-26 14:00.

I have used my PayPal account a fair bit these past months. Both receiving and making payments.

Thus, when I got this email with a payment that the PayPal Investigation had returned, I was on the alert. No, not the phishing alert - I was more worried about someone making a payment and me not getting it. The obvious victim for scams, I might add.

I did not recognize the payers name, and the amount of US$35 sounded a far bit strange to me. Puzzled, I started to read the fine prints, and decided that I needed to check my account to investigate further. I scrolled down the mail to find the link to the PayPal Log on page.

Need I say this was December 26? At the kitchen table, relaxing with my late breakfast. Oh, yes, it was a nice dinner last night!

Upon finding the link again, my mind kicked me in the back, and I decided to check the link before clicking. No surprise there - I was one click away from getting phished (phish, phishing, phisher, phished, - I have no clue of the correct phishing grammar, I must admit).

So Leo, Phishers do have a clue. They are getting better every single day. And if you let the guard down only a split second after a nice dinner party, you might find your account empty. As you note, some are still swearing to old tools and bad quality, but those who mean business adopts and research. And gets their rewards.

Take a good look at the images - they show the email I got. The first shows the standard PayPal template with the serious looking header.

PayPal email

This next picture shows the transaction information - the part of the email that made me believe the authenticity of the scam.

PayPal Scam - transaction details

Kai's blog

I am gald that you had nice

Submitted by Lina (not verified) on Sun, 2007-12-30 14:18.

I am gald that you had nice Christmas. Happy holidays!!

Absolutely, these scams are

Submitted by Kai on Thu, 2007-12-27 20:53.

Absolutely, these scams are getting better every day. And the criminals finds new ways to get to your account too.

Just like your Visa-post (http://andyitguy.blogspot.com/2007/12/wheres-breech.html), Andy - imagine this as a phone-phishing attempt. They set up an automatic phone system, and starts calling people.

When you receive the call, you are asked to enter your credit card number, security codes and whatever else - and since you trust the phone, you give away everything they need and then some.

I am only waiting for this to happen. After all, it is pretty easy to set up.

Kai, I'm glad to hear that

Submitted by Andy Willingham (not verified) on Thu, 2007-12-27 15:24.

Kai, I'm glad to hear that you still had enough wits about you to not click on the link without checking it out first. I've come close to doing that myself a few times. You are right the days of poorly worded and easy to spot fake emails are behind us and we all must be very, very careful.

Kai, You might want to

Submitted by Andy Steingruebl (not verified) on Wed, 2007-12-26 20:50.

Kai, You might want to check out the PayPal blog for the announcement about a plugin that makes detecting phishing easier: http://www.thepaypalblog.com/weblog/2007/12/avoiding-phishi.html Just an FYI.

The PayPal phishing ads are

Submitted by Charlene (not verified) on Wed, 2007-12-26 15:27.

The PayPal phishing ads are getting good and so are the eBay. Fortunately for me I have yet to get one of those emails on the email accounts I'm using with either and I'm using a different account for both!

A few years ago one of my email accounts got a PayPal phishing email while I was away. My husband was very helpful in emailing them back that I wouldn't be able to respond to them for a while!

Navigation

JCI

Lijit

I am gald that you had nice

Absolutely, these scams are

Kai, I'm glad to hear that

Kai, You might want to

The PayPal phishing ads are

Post new comment

User login

Recent comments

Recent blog posts

Resources