Phishing E-mail Hit PayPal
As per the security experts at Sophos, PayPal users have been warned about a phishing scam that appears to have come from money transfer website PayPal.
Cyber criminals behind the scam crafted e-mails with subject line that seems to be legitimate and sent them from web address - "firstname.lastname@example.org."
The text of the e-mail reveals that PayPal would like to inform the recipient about the suspension of his account. A large number of failed login attempts have been reported on the account that forced PayPal authorities to suspend the account. In order to reactivate the account, the user has to fill in a form attached to the e-mail.
The e-mail informs the recipient that he should download the form and follow the instruction given on the screen.
The security experts have claimed that some prudent Internet user easily detected the signs of phishing scam, but others could not.
Commenting on this scam, Graham Cluley, Senior Technology Consultant of Sophos, said that some users might not fall prey to the scam, but what about others (relatives and office colleagues). It would be very difficult for them to find the fraudulence in the e-mail, as reported by webuser on April 26, 2010.
Hence, if a PayPal user believes that he has received a phishing e-mail, then first access his PayPal account to check whether it is suspended or still active. The user can also call PayPal by telephone if he is concerned, said security experts.
Apart from this, PayPal users could undertake some important tips to mitigate the scam, according to security experts. After the reception of an e-mail, the recipient could check its legitimacy by judging on credibility signs. Check the e-mail for spelling errors, read the message again to determine if it makes sense. Lastly, legitimate services like PayPal will never ask for important information though e-mail.
Related article: Phishing With A Redirector Code
» SPAMfighter News - 07-05-2010