Utterly Meaningless » Blog Archive » SOFISTICATED PHISHERS
  • SOFISTICATED PHISHERS

    Filed at 12:53 am under by dcobranchi

    This one almost caught me. I’m not sure what made me suspicious. Just one of those things:

    Aditional PayPal Account Update!

    Dear PayPal Member,

    We have to inform you that paypal must check and update your account. The reason we are forced becuase we must restrict the fraud to a lower level, thanks for your understanding. If you believe that this action may have been taken in error, or, if you feel that your account may have been tampered with, please respond to this message so that we can provide additional information and work with you to resolve this issue. Go to link below and login to your account:

    https://www.paypal.com/cgi-bin/webscr?cmd=_login-run

    After responding to the message, we ask that you allow at least 72 hours for the case to be investigated. Emailingus before that time will result in delays. We apologize in advance for any inconvenience this may cause you and we would like to thank you for your cooperation as we review this matter.

    If you received this notice and you are not the authorized account holder, please be aware that it is in violation of PayPal policy to represent oneself as another PayPal user. Such action may also be in violation of local, national, and/or international law. PayPal is committed to assist law enforcement with any inquires related to attempts to misappropriate personal information with the intent to commit fraud or theft. Information will be provided at the request of law enforcement agencies to ensure that perpetrators are prosecuted to the fullest extent of the law.

    Thank you for your ongoing commitment to PayPal.

    Sincerely,

    PayPal

    8 Responses to “SOFISTICATED PHISHERS”


    Comment by
    Tracy
    May 10th, 2005
    at 2:25 am

    I always watch to see where the link takes you to. But be careful and make sure it is correct. Many times they use an address *very* simular to further throw you off.
    The last one I got was an anti-fraud your account has been violated. What really caught my eye, besides the fact I had been sent them before and knew to chewck them out, is the masked address ended in .net instead of .com.
    Tracy


    Comment by
    Ulrike
    May 10th, 2005
    at 3:04 am

    Forward it to spoof@paypal.com (if you haven’t already).


    Comment by
    Alex Haas
    May 10th, 2005
    at 6:53 am

    I’ve been getting a bunch of those on my Gmail account.


    Comment by
    Chris
    May 10th, 2005
    at 8:14 am

    General rule number 1 – never, ever click on a link in these emails. Even if it is legit, manually type paypal.com into your browser and log into your account. If Paypal (or whoever) really needs you to do something you’ll get somekind of message when you log in.


    Comment by
    Andrea R
    May 10th, 2005
    at 8:42 am

    Yeah, what Chris said. I like how I get emails about accounts I don’t even have.


    Comment by
    Victoria
    May 10th, 2005
    at 9:00 am

    I got the same thing. And it was in my Gmail account.


    Comment by
    meep
    May 11th, 2005
    at 6:33 am

    I do the same as Chris does. The only time I click on a link in email is to read an article or some such.

    What I like about gmail, though, is when I get one of these phishing emails, gmail pops up a warning on top. Pretty neat.


    Comment by
    Diane Patterson
    May 11th, 2005
    at 7:12 pm

    One of the big clues with these types of emails (I get them from “Paypal” and “Ebay” all the time) is that they’re addressed to “Dear PayPal User.” PayPal and Ebay know your name! Legit emails from them will use your name, since you’re registered with them!

    (Which is not to say that if an email purports to be from PayPal and it uses your name then it’s legit. It’s just that the ones who say “Dear PayPal User” are definitely bad actors.)