Somebody (not Pay Pal) is trying to get my account information.
The email looks like this:
Subject: Notification of PayPal Limited Account Access
From: service@paypal.com
Looking at the raw source of the email (you should figure out how to do it, it's easy) I found this text and naughty little bit of HTML code:
We recently reviewed your account, and suspect that your PayPal account may
have been accessed by an unauthorized third party. Protecting the security
of your account and of the PayPal network is our primary concern.
Therefore, as a prevention measure, we have temporarely limited access to
sensitive PayPal account features.
Please click on the link below to confirm your information:
<a href="http://203.233.32.101/php/hide/index2.htm"> https://www.paypal.com/fraudcheck/secure/bill.html?sl=070304</a>
Well I don't think Pay Pal would send a email with a spelling error like "temporarely" and the www.paypal.com link that appears in the email actually is a link to the /hide/index2.htm site. You don't see that unless you look at the email in the raw source mode. The site you are taken to uses the graphics and more from Pay Pal to look like the real site, you'll be asked for your account information and then you'll be hosed. In fact if you copy and paste the Pay Pal url you get a "not found error" from Pay Pal. If you copy paste http://203.233.32.101 you get a login page from "NlpumMedia".
Lesson for the day, figure out how to look at raw source for your emails and look closely.
No comments:
Post a Comment