Saturday, November 04, 2006

"Paypal" phishing scam--beware!!

I dont' know how many of these I've gotten over the past couple months, but it's a lot. If you have a Paypal account, you should be aware of this. I was almost duped the first time I got it--it looks really believable, with the Paypal logo, and transaction ID's, etc, but when you scroll over the links on the page, you can see on the info bar at the bottom of your browser that they don't match up. You can also log into your Paypal account and see if there are any suspicious transactions on there, like the e-mail claims. If you do get one of these, send it to Here is what the e-mail generally consists of, so be on the lookout:

Dear PayPal member,
As part of our security measures, we regularly screen activity in the PayPal system.We recently noticed the following issue on your account:
We have reason to believe that your account was accessed by a third party.We discover unauthorized money transfer:
Amount: 22.47 $

Transaction ID: #13Y17222818UY182281
PayPal e-mail address: This address will vary with each phishing attempt, and they want you to think that this "person" has taken money from your account.
Transaction Date: October - 23 - 2006
Because protecting the security of your account is our primary concern, we have limited access to sensitive PayPal account features. We understandthat this may be an inconvenience but please understand that this temporarylimitation is for your protection.
Case ID Number: PP-163-413-717
For your protection, we have limited access to your account until additional security measures can be completed. We apologize for anyinconvenience this may cause.
To restore your PayPal account and refund the 22.47 $ back to your bank account or PayPal balance click the LogIn button bellow orthe SSL (Secure Sockets Layer) Log In :

Here they list a couple links that they want you to click on. One is named, but when you move your cursor over it, you'll see the actual web address on the bottom of your browser is actually different. The other link is a "secure sockets layer", and this link is also false.

If, after reviewing your account information and refund the money, you seekfurther clarification regarding your account access, please contact PayPalby visiting the Help Center and clicking "Contact Us".We thank you for your prompt attention to this matter. Please understandthat this is a security measure intended to help protect you and youraccount. We apologize for any inconvenience.
Sincerely,PayPal Account Review DepartmentPayPal Email ID PP122

No comments: