Author |
Message |
Blake
| Posted on Thursday, March 03, 2005 - 05:59 pm: |
|
Just got this in the email.
quote:-----Original Message----- From: PAypal Update [mailto:Webmaster@paypal.com] Sent: Thursday, March 03, 2005 11:25 AM To: blake@badweatherbikers.com Subject: Paypal Account Update Message-Id: <20050303172451.0CBF26E328@web01.domainsite.com> Date: Thu, 3 Mar 2005 12:24:51 -0500 (EST) Dear valued PayPalŪ member: It has come to our attention that your PayPalŪ account information needs to be updated as part of our continuing commitment to protect your account and to reduce the instance of fraud on our website. If you could please take 5-10 minutes out of your online experience and update your personal records you will not run into any future problems with the online service. However, failure to update your records will result in account suspension. Please update your records on or before March 10, 2005. Once you have updated your account records, your PayPalŪ session will not be interrupted and will continue as normal. To update your PayPalŪ records click on the following link: ...paypal.com/cgi-bin/webscr?cmd=_update Thank You. PayPalŪ UPDATE TEAM Accounts Management As outlined in our User Agreement, PayPalŪ will periodically send you information about site changes and enhancements. Visit our Privacy Policy and User Agreement if you have any questions. http://www.paypal.com/cgi-bin/webscr?cmd=p/gen/ua/policy_privacy-outside
I hope everyone here knows that neither PayPal nor ebay will EVER ask such a thing via email or threaten revocation of account status. The link shows up in the email as a valid paypal address, but the actual hyperlink target takes you to a fraudulent site seeking to gather your PayPal information. Never, ever provide ebay or PayPal information via any email link. Only do it through the actual site via a normal login to it. Besides confirming the actual target of hyperlinks in such email, you can also verify the actual sender by looking at the email header, which in this case was as follows:
quote:Received: from badweatherbikers.com ([67.153.116.5]) by worldnet.att.net (mtiwmxc11) with ESMTP id <2005030317251101100hpkose>; Thu, 3 Mar 2005 17:25:11 +0000 X-Originating-IP: [67.153.116.5] Received: from web01.domainsite.com (web01.domainsite.leasedminds.net [64.74.124.24]) by badweatherbikers.com (8.12.11/8.12.11) with ESMTP id j23HPAF7012811 for <badweatherbikers.com>; Thu, 3 Mar 2005 12:25:10 -0500 Date: Thu, 3 Mar 2005 12:25:10 -0500 Message-Id: <200503031725.j23HPAF7012811@.badweatherbikers.com> Received: by web01.domainsite.com (Postfix, from userid 99) id 0CBF26E328; Thu, 3 Mar 2005 12:24:51 -0500 (EST) To: badweatherbikers.com Subject: Paypal Account Update From: PAypal Update <Webmaster@paypal.com> Reply-To: MIME-Version: 1.0 Content-Type: text/html Content-Transfer-Encoding: 8bit
Right Bill? |
Steve_mackay
| Posted on Thursday, March 03, 2005 - 06:04 pm: |
|
Blake, I've gotten dozens of those emails. I just report 'em to Spamcop |
Buelliedan
| Posted on Thursday, March 03, 2005 - 06:21 pm: |
|
I get at least 4 a day of some kind. Has anybody else got the FBI one yet? |
Evaddave
| Posted on Thursday, March 03, 2005 - 07:06 pm: |
|
Yet one more reason why HTML email sucks. |
Thansesxb9rs
| Posted on Thursday, March 03, 2005 - 07:30 pm: |
|
Blake, We received that email the other day at work. They must have a list of all paypal users. Hopefully everyone can read into it and not respond. (Message edited by thansesxb9rs on March 03, 2005) |
Outrider
| Posted on Thursday, March 03, 2005 - 09:39 pm: |
|
Whew...Thanks for the heads up. I thought that was a con when I saw it and sent it off to the spam report. Fortunately, I didn't feel any pressure to respond as I seldom use my Pay Pal account and if it expires and I need to open a new one, no big deal. Incidentally, I received it last December. |
Oddbawl
| Posted on Thursday, March 03, 2005 - 09:51 pm: |
|
Remember, if it's from Paypal, it will address you by your name. If it says "Dear PAYPAL user" or the like and DOESN'T address you by your name, it's a scam. |
Ingemar
| Posted on Friday, March 04, 2005 - 01:40 am: |
|
Thanks for the heads up. |
Henrik
| Posted on Friday, March 04, 2005 - 08:33 am: |
|
I got one of those and sent it to Paypal's fraud report center. Henrik |
Buelliedan
| Posted on Friday, March 04, 2005 - 08:36 am: |
|
I used to send them to e-bay, paypal etc, After awhile I got so many of them I just stopped caring anymore. Just hit delete and be done with it. |
Bluzm2
| Posted on Friday, March 04, 2005 - 10:47 am: |
|
BEWARE!!! Paypal and Ebay are not the only one's being targeted. I have recieved at least 5 simular emails regarding credit cards or accounts with some big name banks. The emails look very authentic except when you browse the source code. You wind up linking to a site in Saudi Arabia. The main site page is for a Saudi dentist! Obviously (or maybe not...) the site has been hacked and is being used as a mule for the fraudsters. I have also seen security reports that some of these type phishing attempts are terrorist organizations raising funds... One I saw used 5 different hacked sites to store different parts of the html email content. One was a radio station in Ohio! I notified them of the security breach. They removed the files from their server. They are getting more and more clever every week... Brad |
Along4theride
| Posted on Friday, March 04, 2005 - 10:57 am: |
|
I get them all the time for banks and financial institutions I don't have accounts with. I got one last week for Regions bank. What I typically do is go to the website of the financial institution and forward the email to their fraud dept. It helps them considerably. (Message edited by along4theride on March 04, 2005) |
Blake
| Posted on Friday, March 04, 2005 - 05:21 pm: |
|
I've received them before plenty of times, mostly ebay related. But this one to the untrained eye showed a link to a valid PayPal address. First time I'd seen that. Upon mouse-over of the hyperlink though, the actual link address shows up in the status bar at the bottom of the window (I was using my webmail access). I don't understand why whoever set up the system allowed email users to so easily masquerade under a fraudulent email address. That needs to be done away with. |
Sleez
| Posted on Friday, March 04, 2005 - 06:51 pm: |
|
i have received, just last week, two similar emails, all asking me to go to the link and verify my password, links were all bogus, i sent them to the paypal snoops, they replied that both were absolutely bogus! quote: Dear xxxxxxxx@hotmail.com , We recently noticed one or more attempts to log in to your PayPal account from a different IP address. If you recently accessed your account while traveling, the unusual log in attempts may have been initiated by you. However, if you did not initiate the log ins, please visit PayPal as soon as possible to check-up your account information: http://www.paypal.com/cgi-bin/webscr?cmd=_login-run Changing your account is a security measure that will ensure that you are the only person with access to the account. Thanks for your patience as we work together to protect your account. Sincerely, PayPal ---------------------------------------------------------------- Please do not reply to this e-mail. Mail sent to this address cannot be answered. For assistance, log in to your PayPal account and choose the "Help" link in the header of any page. PayPal Email ID PP32461 response from paypal: quote: Dear Lee Stipe, Thank you for contacting PayPal. We appreciate you bringing this suspicious email to our attention. We can confirm that the email you received was not sent to you by PayPal. The website linked to this email is not a registered URL authorized or used by PayPal. We are currently investigating this incident fully. Please do not enter any personal or financial information into this website. If you have surrendered any personal or financial information to this fraudulent website, you should immediately log into your PayPal Account and change your password and secret question and answer information. Any compromised financial information should be reported to the appropriate parties. If you notice any unauthorized activity associated with your PayPal transaction history, please immediately report this to PayPal by following the instructions below: 1. Log in to your account at https://www.paypal.com/ by entering your email address and password into the Member Log In box 2. Click on Security Center at the bottom of the page 3. Click on the 'Unauthorized Transaction' link under the Report a Problem column 4. Please follow the instructions in order to access the appropriate form If you have any further questions, please feel free to contact us again. Sincerely, PayPal Account Review Department ************************************************************************ This email is sent to you by the contracting entity to your User Agreement, either PayPal Inc or PayPal (Europe) Limited. PayPal(Europe) Limited is authorized and regulated by the Financial Services Authority in the UK as an electronic money institution. *********************************************************************** PayPal and its representatives will NEVER ask you to reveal your password. There are NO EXCEPTIONS to this policy. If anyone claiming to work for PayPal asks for your password under any circumstances, by email or by phone, please refuse and immediately contact us via webform at https://www.paypal.com/wf/f=sa_pass. (Message edited by sleez on March 04, 2005) |
|