PayPal Warning - Phishing - Send to someone you hate!

Message boards : Cafe SETI : PayPal Warning - Phishing - Send to someone you hate!
Message board moderation

To post messages, you must log in.

1 · 2 · Next

AuthorMessage
Profile Darth Dogbytes™
Volunteer tester

Send message
Joined: 30 Jul 03
Posts: 7512
Credit: 2,021,148
RAC: 0
United States
Message 133481 - Posted: 6 Jul 2005, 23:59:24 UTC
Last modified: 7 Jul 2005, 0:06:13 UTC

This is the best one yet. Look at the source URL
PayPal is aware of this one and have the FBI investigating it.


From: service@secure.paypal.com
To: DELETED TO PROTECT MY PRIVACY! (Sort of)
Sent: Wednesday, July 06, 2005 4:39 AM
Subject: PayPal Account Suspension Warning #PP321
Dear valued PayPal member,
It has come to our attention that your billing informations are out of
order .
If you could please take 5-10 minutes out of your online experience
and update your personal records so you will not run into any future
problems with the online service .However, any failure in updating your
records will result in account suspension .
Please update your records now .
Once you have updated your account records your PayPal session won't
be interrupted and will continue as normal . Failure to update will
result in
cancellation of service, Terms of Service (TOS) violations or future
problems .
To place/update your PayPal records please Click :
https://www.paypal.com/cgi-bin/webscr?cmd=_login-run
Thanks for your patience as we work together to protect your
account.
Sincerely,
The PayPal Team
----------------------------------------------------------------
PROTECT YOUR PASSWORD
NEVER give your password to anyone and ONLY log in at
https://www.PayPal.com/ . Protect yourself against fraudulent websites
by
logging through this link:
https://www.paypal.com/cgi-bin/webscr?cmd=_login-run
----------------------------------------------------------------
Please do not reply to this e-mail. Mail sent to this address
cannot be
answered. For assistance, log in to your PayPal account and
choose the
"Help" link in the header of any page.
PayPal Email ID PP321

[b]Bastards!

If anyone receives this e-mail, forward it to spoof@paypal.com immediately and do not open any
of the links. Luckily I didn't being the suspicious
old hound that I am.



Account frozen...
ID: 133481 · Report as offensive
Profile Jord
Volunteer tester
Avatar

Send message
Joined: 9 Jun 99
Posts: 15184
Credit: 4,362,181
RAC: 3
Netherlands
Message 133483 - Posted: 7 Jul 2005, 0:03:59 UTC

I'm only getting threatening emails these days that things are deleted/locked/suspended, mostly my email account... it comes with the latest Netsky virus though.

So I laugh them all off. My email account is suspended again? How did I get that email then? ;)
ID: 133483 · Report as offensive
Profile Qui-Gon
Volunteer tester
Avatar

Send message
Joined: 15 May 99
Posts: 2940
Credit: 19,199,902
RAC: 11
United States
Message 133486 - Posted: 7 Jul 2005, 0:08:24 UTC

One way to spot phishing is to look for errors in spelling, grammar, punctuation and sometimes (as Ageless just pointed out) logic. Real sites check their presentation very thoroughly, and rarely solicit your account information or password. Even if you think the request is real, contact the actual company yourself and check.
ID: 133486 · Report as offensive
Profile Fuzzy Hollynoodles
Volunteer tester
Avatar

Send message
Joined: 3 Apr 99
Posts: 9659
Credit: 251,998
RAC: 0
Message 133492 - Posted: 7 Jul 2005, 0:13:43 UTC - in response to Message 133481.  

Strangely I recieved a mail from paypal to update the expiring date on my creditcard, and it said explicitly "log on to your paypal account" and "never open a link in an email"! (I have deleted the mail after doing it!)


"I'm trying to maintain a shred of dignity in this world." - Me

ID: 133492 · Report as offensive
Profile Darth Dogbytes™
Volunteer tester

Send message
Joined: 30 Jul 03
Posts: 7512
Credit: 2,021,148
RAC: 0
United States
Message 133494 - Posted: 7 Jul 2005, 0:15:53 UTC - in response to Message 133492.  

Strangely I recieved a mail from paypal to update the expiring date on my creditcard, and it said explicitly "log on to your paypal account" and "never open a link in an email"! (I have deleted the mail after doing it!)



But those links on the e-mail are phoney, they don't go to PayPal.


Account frozen...
ID: 133494 · Report as offensive
Profile Bruno G. Olsen & ESEA @ greenholt
Volunteer tester
Avatar

Send message
Joined: 15 May 99
Posts: 875
Credit: 4,386,984
RAC: 0
Denmark
Message 133503 - Posted: 7 Jul 2005, 0:24:05 UTC

I got one of those e-mails telling me that one of my e-mail acounts was closed. Four things made me delete it with no worries about my account: 1) I got that mail on that e-mail, and that ISP doesn't even know any of my other ones 2) The ISP that holds that e-mail always sign with ISP name AND the name of the person who send it when they e-mail me - not just the ISP name 3) They always send paper mail when changes happen 4) It was written in english - while it's a local Danish ISP with only Danish costumers.

I also got one of those ebay mails. Funny - I never even visited their site let alone had an account there.

Yup, funny mails do float around ;)


ID: 133503 · Report as offensive
Profile Fuzzy Hollynoodles
Volunteer tester
Avatar

Send message
Joined: 3 Apr 99
Posts: 9659
Credit: 251,998
RAC: 0
Message 133505 - Posted: 7 Jul 2005, 0:25:00 UTC - in response to Message 133494.  


But those links on the e-mail are phoney, they don't go to PayPal.



I don't know because I logged on my account and removed that creditcard in question! So I never found out! And the creditcard was about to expire!



"I'm trying to maintain a shred of dignity in this world." - Me

ID: 133505 · Report as offensive
Profile RDC
Volunteer tester
Avatar

Send message
Joined: 17 May 99
Posts: 544
Credit: 1,215,728
RAC: 0
United States
Message 133521 - Posted: 7 Jul 2005, 0:41:50 UTC

I get similar from various banks across the country. The first one I ever received though was actually using my real bank's name in it. The first thing I did was to log into my bank's web site and there it was, a scam warning posted on their main page warning about the type of e-mail I received and to report it so then I viewed the source code and immediately spotted the URL redirect in the e-mail coding and then notified my bank of it.

Since then I get phishing scams trying to pass themselves off as banks from across the country trying to get my account information.



To truly explore, one must keep an open mind...
ID: 133521 · Report as offensive
AC
Avatar

Send message
Joined: 22 Jan 05
Posts: 3413
Credit: 119,579
RAC: 0
United States
Message 133660 - Posted: 7 Jul 2005, 9:47:09 UTC
Last modified: 7 Jul 2005, 9:49:21 UTC

Hmm, thanks for the tip. I noticed that they used certain words that PayPal would probably not use in sentences when sending out email like your PayPal session won't be interrupted. An actual PayPal sentence would probly have said your PayPal session will not be interupted. violations or future problems? Dunno, "future problems" sounds a little vague.


ID: 133660 · Report as offensive
Profile Bruno G. Olsen & ESEA @ greenholt
Volunteer tester
Avatar

Send message
Joined: 15 May 99
Posts: 875
Credit: 4,386,984
RAC: 0
Denmark
Message 133735 - Posted: 7 Jul 2005, 13:22:50 UTC - in response to Message 133521.  

I get similar from various banks across the country. The first one I ever received though was actually using my real bank's name in it. The first thing I did was to log into my bank's web site and there it was, a scam warning posted on their main page warning about the type of e-mail I received and to report it so then I viewed the source code and immediately spotted the URL redirect in the e-mail coding and then notified my bank of it.

Since then I get phishing scams trying to pass themselves off as banks from across the country trying to get my account information.


Sounds like the ones I got from citibank - and I've never even had anything to do with them :D First I thought they were getting desperate for customers and sent me spam, but then, as I read briefly through it, I knew it couldn't possibly be from them - good thing with a delete-button on the keyboard ;)


ID: 133735 · Report as offensive
Profile Celtic Wolf
Volunteer tester
Avatar

Send message
Joined: 3 Apr 99
Posts: 3278
Credit: 595,676
RAC: 0
United States
Message 133743 - Posted: 7 Jul 2005, 13:46:37 UTC

Phising E-Mail is almost always HTML formatted so they can hide the REAL URL in the HREF tags.

Banks do not use e-mail if there is a problem with an account. They suspend the account and send you are real letter or wait fro you to call.

PayPay and EBay do the same thing.


I'd rather speak my mind because it hurts too much to bite my tongue.

American Spirit BBQ Proudly Serving those that courageously defend freedom.
ID: 133743 · Report as offensive
andy

Send message
Joined: 27 Aug 00
Posts: 5
Credit: 75,747
RAC: 0
United Kingdom
Message 135823 - Posted: 12 Jul 2005, 23:41:45 UTC - in response to Message 133481.  

yeah i had a few of them about a month ago...went straight to paypal lol
sent them about 4 or 5 in the last year of varying types.
ID: 135823 · Report as offensive
Profile Jord
Volunteer tester
Avatar

Send message
Joined: 9 Jun 99
Posts: 15184
Credit: 4,362,181
RAC: 3
Netherlands
Message 136241 - Posted: 14 Jul 2005, 1:41:16 UTC

FROM THE DESK OF
MR FRED ANDERSON
CHIEF CONSULTING OFFICER
SOUTH EXPORT INTERNATIONAL TRADE
PRETORIA SOUTH AFRICA

Ref Number: REF: SEIT /26510460037/02

Dear Sir/Madam,

I am Mr.Fred Anderson , Managing Director of South Export and
International Trade, we are a company who deal on Raw materials and export into the Canada/America and Europe.

We are searching for representatives who can help us establish a medium of getting to our costumers in the Canada/America and Europe as well as making payments through you to us.Please if you are interested in transacting business with us we will be glad.

Please contact us for more information; Subject to your Satisfaction you will be given the opportunity to negotiate your mode of which we will pay for your services as our representative in
Canada/America and Europe.

Please if you are interested forward to us your phone number/fax and your full contact addresses:

Thanks in advance

Kingly reply me with the email address provided here:
seitconsultant@sify.com

Mr.Fred Anderson
CHIEF CONSULTING OFFICER
(SOUTH EXPORT INTERNATIONAL TRADE)


I bet it's the secretary who did it, with the stapler, she wants to be queen next to your kingness. ;)
ID: 136241 · Report as offensive
Profile Stephen Macy
Avatar

Send message
Joined: 8 May 99
Posts: 167
Credit: 1,774,063
RAC: 0
United States
Message 136383 - Posted: 14 Jul 2005, 15:12:52 UTC

Just received this e-mail after using PayPal on an E-Bay purchase. I wonder how many people which receive this will click on the address link.


Dear PayPal Customer

This e-mail is the notification of recent innovations taken by PayPal to detect inactive customers and non-functioning mailboxes.

The inactive customers are subject to restriction and removal in the next 1 month.

Please confirm your email address and credit card information by clicking the link below:



https://www.paypal.com/cgi-bin/webscr?cmd=_login-run

This notification expires Aug. 1, 2005


Thanks for using PayPal!


This PayPal notification was sent to your mailbox. Your PayPal account is set up to receive the PayPal Periodical newsletter and product updates when you create your account. To modify your notification preferences and unsubscribe, go to https://www.paypal.com/PREFS-NOTI and log in to your account. Changes to your preferences may take several days to be reflected in our mailings. Replies to this email will not be processed.

Copyright© 2005 PayPal Inc. All rights reserved. Designated trademarks and brands are the property of their respective owners.

ID: 136383 · Report as offensive
Profile Jack Lass
Volunteer tester
Avatar

Send message
Joined: 22 Mar 02
Posts: 120
Credit: 41,972
RAC: 0
United States
Message 136472 - Posted: 14 Jul 2005, 20:36:29 UTC - in response to Message 136383.  
Last modified: 14 Jul 2005, 20:38:17 UTC

Just received this e-mail after using PayPal on an E-Bay purchase. I wonder how many people which receive this will click on the address link.


Dear PayPal Customer

This e-mail is the notification of recent innovations taken by PayPal to detect inactive customers and non-functioning mailboxes.

The inactive customers are subject to restriction and removal in the next 1 month.

Please confirm your email address and credit card information by clicking the link below:



https://www.paypal.com/cgi-bin/webscr?cmd=_login-run

This notification expires Aug. 1, 2005


Thanks for using PayPal!


This PayPal notification was sent to your mailbox. Your PayPal account is set up to receive the PayPal Periodical newsletter and product updates when you create your account. To modify your notification preferences and unsubscribe, go to https://www.paypal.com/PREFS-NOTI and log in to your account. Changes to your preferences may take several days to be reflected in our mailings. Replies to this email will not be processed.

Copyright© 2005 PayPal Inc. All rights reserved. Designated trademarks and brands are the property of their respective owners.


From time to time I receive notices purporting to be from PayPal. I've made it a point to delete them all even if I believe that they may be legit. Anything I need to know about PayPal and my account I can learn by logging on to PayPal directly. I've also suffered a spate of "bank" inquiries concerning my account...all of which were from banks where I don't nor have ever had an account. These are easy to spot and delete. But the fact of the matter is that there are so many of these phishing scams going on because so many people bite.
Most are elderly, trusing souls who aren't up on internet scams or who can't believe anyone would try to harm them.

It is this psychology that con men have relied on forever. It used to be that you'd get a postcard telling you that you were a winner and to call a phone number to get your prize. Many guys have made a good living from scamming the gullible and even those who should know better.
Why? Because hope (and greed) spring eternal in the human breast.

THE MOTHER OF FOOLS IS ALWAYS PREGNANT

I'M TROLLING FOR FOOLS. THIS MUST BE THE PLACE!
ID: 136472 · Report as offensive
Profile ralic
Volunteer tester

Send message
Joined: 6 Jan 00
Posts: 308
Credit: 274,230
RAC: 0
Message 137182 - Posted: 16 Jul 2005, 12:00:38 UTC

Surprise, surprise, I just got one too.

We recently noticed an attempt to log in to your PayPal
account from a foreign IP address and we have reason to belive
that your account was used by a third party without your
authorization....

etc.


Examining the raw email, the included link will go to http://www.paypal.com.webscr-userfiles.info, whereas the "onMouseOver" and "onMouseOut" would have one believe that the link will go to https://www.paypal.com/cgi-bin/webscr?cmd=_login-run

However complicated they try and make these things, they just can't seem to get past the simple spelling errors....
ID: 137182 · Report as offensive
Profile Captain Avatar
Volunteer tester
Avatar

Send message
Joined: 17 May 99
Posts: 15133
Credit: 529,088
RAC: 0
United States
Message 137216 - Posted: 16 Jul 2005, 13:48:35 UTC - in response to Message 137182.  

Surprise, surprise, I just got one too.

We recently noticed an attempt to log in to your PayPal
account from a foreign IP address and we have reason to belive
that your account was used by a third party without your
authorization....

etc.


Examining the raw email, the included link will go to http://www.paypal.com.webscr-userfiles.info, whereas the "onMouseOver" and "onMouseOut" would have one believe that the link will go to https://www.paypal.com/cgi-bin/webscr?cmd=_login-run

However complicated they try and make these things, they just can't seem to get past the simple spelling errors....



The Fastest way to tell if a PayPal email is legit.

They always Always address the account holder by the name they
are listed as: Dear Captain Avatar or Dear Betty Sue O'Hara.....
ID: 137216 · Report as offensive
Profile Stephen Macy
Avatar

Send message
Joined: 8 May 99
Posts: 167
Credit: 1,774,063
RAC: 0
United States
Message 138222 - Posted: 18 Jul 2005, 12:46:46 UTC


I,Mr.Pius Omon:

I represent Rhino import and export company based in Nigeria. My company exports cocoa and other goods/services for world trade.

We are looking for representatives in europe and America that can help my company in clearing our money, because most of our customers pay with checks and we don,t have a foreign account that will clear this money.As our representative you will receive 10% of any money you clear for the company, that will be how you will be paid by the company,and the rest of the money will be paid into an account we will provide for you.

If you are interested in our offer please send your NAME, CONTACT ADDRESSS and TELEPHONE NUMBER.

Looking forward to hear from you.

Very Respectfully,

Mr. Pius Omon, President

RHINO Import and Export company

Nig. ltd.



___________________________________________________________________________
Ce Message a été composé avec le module WebMail des services Eurasia Aikido http://www.eurasia-aikido.com

ID: 138222 · Report as offensive
Profile CMDR Molan Ryke
Volunteer tester
Avatar

Send message
Joined: 13 Jun 99
Posts: 8
Credit: 541,476
RAC: 0
Norway
Message 139806 - Posted: 20 Jul 2005, 20:54:50 UTC

Got the same mail a couple of days ago. it went staight to the trash.
There is more and more of this, there is another problem here in norway these days.
People mounting Skimmers on ATM Macines and copies VISA cards. And get the pin codes.
A couple of days a man got attacked by the guys that put up the device, becouse he ripped the skimmer equipment off the ATM.
The god thing is, they where filmed by a security camera.
ID: 139806 · Report as offensive
K4CVR

Send message
Joined: 15 Dec 00
Posts: 11
Credit: 11,250
RAC: 0
United States
Message 143383 - Posted: 27 Jul 2005, 0:35:52 UTC
Last modified: 27 Jul 2005, 0:37:30 UTC


Ah, these creative youngsters these days... 'Getting a little tired of it.




Protect Your Account Info
Make sure you never provide your password to fraudulent websites.

To safely and securely access the PayPal website or your account, open a new web browser (e.g. Internet Explorer or Netscape) and type in the PayPal URL to be sure you are on the real PayPal website.https://www.paypal.com/us/) to be sure you are on the real PayPal site.

PayPal will never ask you to enter your password in an email.

For more information on protecting yourself from fraud, please review our Security Tips at https://www.paypal.com/us/securitytips

Protect Your Password
You should never give your PayPal password to anyone, including PayPal employees.

Security Measures

We recently noticed an attempt to log into your PayPal account from a foreign IP address and we have reason to belive that your account was used by a third party without authorization.

If you recently accessed your account while traveling, the unusual log in attempts may have been initiated by you. Therefore, if you are the rightful account holder, click on the link below to log into your account and follow the instructions.
Security Tips: For your security, PayPal will never ask you to enter your full bank account, credit or debit card number without providing you at least the LAST TWO DIGITS of know the number. These digits let you know the we already know the full number and are asking you for the rest of it.
Beware of any website or e-mail asking for these numbers of "verification" that does not PROVE that it knows the number by providing at least the last two digits.

https://www.paypal.com/us/cgi-bin/webscr?cmd=login-run


Ignoring our request, for an extended period of time, you leave us no choice but to temporarily suspend your account may result in eventual account closure.

Please understand that this is a security measure meant to help protect you and the safety of your account.
We apologize for any inconvenience.

You can also confirm your identity by logging into your PayPal account at https://www.paypal.com/us/.

Sincerely,
Audrey
PayPal Account Rewiew Departament.

Please do not reply to this email. This mailbox is not monitored and you will not
receive a response. For assistance, log in to your PayPal account and choose
the Help link located in the top right corner of any PayPal page.

To receive email ns in plain text instead of HTML,
update your preferences here.




PayPal Email ID PP-356-120-3062
ID: 143383 · Report as offensive
1 · 2 · Next

Message boards : Cafe SETI : PayPal Warning - Phishing - Send to someone you hate!


 
©2024 University of California
 
SETI@home and Astropulse are funded by grants from the National Science Foundation, NASA, and donations from SETI@home volunteers. AstroPulse is funded in part by the NSF through grant AST-0307956.