Forum: MarketPlace Showcase


Subject: PayPal Phising Epidemic

Huolong opened this issue on Oct 07, 2006 · 12 posts


Huolong posted Sat, 07 October 2006 at 12:30 PM

In the last month, I have had ten phishing attempts aimed at my account at PayPal.   It seems that every time I buy something using PayPal, I get at least three or four phishes.    I don't think that PayPal polices it's security procedures nearly as much as credit card companies.

Vendors, take note.  Buyer beware!

 

Gordon


GothKurlz posted Sat, 07 October 2006 at 12:51 PM

ty for the fyi :)


pokeydots posted Sat, 07 October 2006 at 1:38 PM

I get them all the time even when I haven't used paypal, I get some from banks I have never heard of! The scams come from everywhere. I never click on a link in an e mail, I type it in the address bar and check in once in awhile with paypal to see if there is anything I need to update. I have never had a problem with pal pal since I have been using them and its been quite a few years.

Poser 9 SR3  and 8 sr3
=================
Processor Type:  AMD Phenom II 830 Quad-Core
2.80GHz, 4000MHz System Bus, 2MB L2 Cache + 6MB Shared L3 Cache
Hard Drive Size:  1TB
Processor - Clock Speed:  2.8 GHz
Operating System:  Windows 7 Home Premium 64-bit 
Graphics Type:  ATI Radeon HD 4200
•ATI Radeon HD 4200 integrated graphics 
System Ram:  8GB 


Huolong posted Sat, 07 October 2006 at 1:49 PM

I also get phishing alleging problems with banks I don't do business with.   But the single most aggressive phishing I experience has to do the PayPal, after which eBay comes next.

Gordon


zollster posted Sat, 07 October 2006 at 2:06 PM

you'd think that these ppl would realize that by now we aint gonna fall for it


Larry F posted Sat, 07 October 2006 at 3:32 PM

They're looking for that split second knee jerk reaction with stuff like:

Please confirm this e-mail address that was recently added to your paypal account.
Or
We've just had to close your paypal account for (pick a reason - my favorite:  $6500 exceeds your monthly processing limit, LOL).
Or
Your paypal account has been suspended/shut down because of an unworking e-mail (when you GET the e-mail at the only address in your paypal account)

There are several others, of course, but again they're looking for that sudden moment of just reacting.  Anecdotally, I have had quite a few with *.edu" in the alleged paypal address they want you click on and, even curiouser, most of them have really horrible misspellings and typos.

Best advice as above:  TYPE IN THE PAYPAL (OR EBAY OR WHATEVER) IN YOUR BROWSER.


Huolong posted Sat, 07 October 2006 at 3:46 PM

I forward all PayPal phishing incidents to abuse@paypal.com and they send information on what to do to check actual abuse of my account.

Gordon


pokeydots posted Sat, 07 October 2006 at 5:11 PM

I use to forward mine too, but there got to be so many I just started deleting them

Poser 9 SR3  and 8 sr3
=================
Processor Type:  AMD Phenom II 830 Quad-Core
2.80GHz, 4000MHz System Bus, 2MB L2 Cache + 6MB Shared L3 Cache
Hard Drive Size:  1TB
Processor - Clock Speed:  2.8 GHz
Operating System:  Windows 7 Home Premium 64-bit 
Graphics Type:  ATI Radeon HD 4200
•ATI Radeon HD 4200 integrated graphics 
System Ram:  8GB 


mrsparky posted Sat, 07 October 2006 at 7:39 PM

A genuine Paypal email will always address you by name. Not your email address or anything like that.

However you should NEVER click on any links in that mail just be to safe. Type the paypal address carefully in. Or use a favourite/bookmark thats not stored in the usual location. For example create a favourite in any non system folder, not in Windows or the root of C: or the desktop.  

You can stop the phishing emails by using a filter in your email application. For example in Mailwasher I would set up a filter with the line ...

"paypal account has been suspended"

Problem solved. For those that do get through forward them to paypal, you'll get the standard automated response, but paypal will act on them and try to get the phishing site closed down.  

Pinky - you left the lens cap of your mind on again.



Xena posted Sat, 07 October 2006 at 7:40 PM

I use Paypal and Ebay continuously (at least once a week), yet rarely get phishing emails from either. I get most from banks that don't even exist in Australia LOL


MaterialForge posted Sun, 08 October 2006 at 1:58 PM

Same here. I don't get very many of them.


JHoagland posted Mon, 09 October 2006 at 6:10 PM

Just to second what the other posters are saying: the phishing e-mails you receive are not related to any purchased you actually make with PayPal. By it's very definition, "phishing" describes the millions of e-mails "cast out" in the hope of "reeling in" a few PayPal accounts.
Just like the phishing e-mails sent from eBay, Citibank, Washington Mutual, etc., the phishers DO NOT have your account information: they're hoping that you will panic and click the links in the e-mail. I recently received an e-mail from CitiBank saying that my account was suspended... and I don't even have an account with them!
 
Here's a fun (but possibly dangerous trick):
Pass your mouse over the "PayPal" link in the e-mail. It will usually say something like http://203.45.42.212/cmd/paypal/webscr.exe. If you're feeling brave, type in the IP address: the http://203.45.42.212 part of the URL and see where it takes you. There is a HUGE probabilty that it will be some site in Asia... and possibly a real site: I tried this with one phishing e-mail and the site was a university in Thailand. I wonder if they know they have a phisher operating from their servers?


VanishingPoint... Advanced 3D Modeling Solutions