Got this e-mail... all looks very official from Paypal but the link doesn't do anything and the URL looks odd to me....
Dear PayPal valued member,
PayPal is committed to maintaining a safe environment for
its community of buyers and sellers.
To protect the security of your account, PayPal employs
some of the most advanced security systems in the world
and our anti-fraud teams regularly screen the PayPal
system for unusual activity.
Recently, our Account Review Team identified some unusual
activity in your account.
In accordance with PayPal's User Agreement and to ensure
that your account has not been compromised, access to
your account was limited.
To restore your account please click on the link bellow:
http://www.paypal.com/cgi-bin/webscr?cmd=_login-run
If you fail to restore your account access by the date
shown below, your account will be closed.
This notification expires on the 23th of March, 2005.
About | Accounts | Fees | Privacy | Security Center | Contact Us | User Agreement | Developers | Buyer Credit | Referrals | Shops | Mass Pay
an eBay company
Copyright © 1999-2004 PayPal. All rights reserved.
Information about FDIC pass-through insurance
--------------------------------------------------------------------------------
No virus found in this incoming message.
Checked by AVG Anti-Virus.
Version: 7.0.308 / Virus Database: 266.7.4 - Release Date: 18/03/2005
Almost certainly a hoax, seen these things numerous times. If you want to check your account sign in the way you normally would through their website,
DON'T use the link, it will send your details off to someone so that they can access your account.
Pete
[Edited on 23/3/05 by scoobyis2cool]
Thanks for the swift response Pete.
I've changed my password, just in case.....
Cheers
John
However - if that address is correct as it is via paypal.com then it goes through paypal... looks genuine to me actually. Anyone?
Hi Steve,
copied and pasted the e-mail to Paypal fraud dept. and recieved a reply straight away stating that it was not sent by Paypal.
The clue is in the greeting. Paypal always refer to you by first and last name.
Bloody convincing though.
John
Have had a couple like that. If you scroll over the link, you'll see that it takes you to a different site than paypal.
If you forward that letter to spoof@paypal.com, they'll be glad to hear from you!
also, when forwarding it, try to include the headers so they can see the full origin and return path.
Had a stack of those fakes and as you say it looks very real. Rule to self always type the paypal url never use a link as it could be like this
www.paypal.con
and you wouldnt take a second look at it.
[Edited on 23-3-05 by mangogrooveworkshop]
Scary real to the less experianced .
Rescued attachment scampal.jpg
the way a lot of these things work is the link is a genuine paypal web address, but it actually fires off a rogue website, normally with the address
and toolbar removed, this comes up in the foregruond and it also fires off the bank/paypal homepage in the background to make you think you're
inteh right place.
As said if you ever suspect anything dodgy log into your bank/paypal account from their own website, never from an email link. if it's
desperate/legitimate they'll have a message informing you when you log in the normal way.
Ned.
A new 'feature' of this kind of site is that they will employ an address that LOOKS genuine. basically they employ international characters
which although identical to western characters will be interpreted by the browser differently.
this LINK
will tell you more and there is a test to see if you are vulnerable.
If you are running Firefox you should upgrade to ver 1.0.1 fairly soon as there is a security problem - nefarious folk have discovered that they can
direct people to a phishing page and hide the URL by mucking around with the IDN (see
http://news.zdnet.co.uk/internet/security/0,39020375,39189172,00.htm )
Tools - Options - Advanced, then scroll down to Software Update. Click on the "check now" button and accept the download for 1.0.1)
This will mend the problem pointed out by Dave.
cheers,
David
this is an example of a real mail from ebay. note they ask you to go to the main site and log in there.
quote:
Hello joel1_1_1,
We are writing to alert you that your balance is not paid, because your
credit/debit card declined eBay's attempt to charge your monthly invoice amount
to your card.
Your payment is due by your next invoice date. Please follow these steps to make
a payment:
- Go to the eBay Home page
- Select My eBay and logon with your eBay User ID and Password
- Select the Accounts Tab
- Select an option to Pay Your eBay Seller Fees (you will need to logon
again)
As a courtesy, eBay will automatically make a second attempt to charge your
card. This attempt will take place in about 5 to 7 days.
As a reminder, overdue accounts may be restricted from buying or selling until
payment is received.
Regards,
eBay International AG