Fresh Phishing E-mail Scam Circulating against PayPal Subscribers
According to security researchers, one fresh phishing scam in the name of PayPal has been detected circulating online that's targeting innocent Internet-users, published softpedia.com dated August 8, 2012.
Addressing recipients by their name, the spam mail regretfully states that the user's latest PayPal transaction couldn't be cleared as his credit-card company didn't let the payment to get passed. However, the problem can be corrected if he follows any of the given options:
One, he can make the transaction again utilizing some other payment card that his PayPal account accepted during registration. But, incase there isn't an alterative card then that can be done via going to Profile followed with clicking on 'Add or Remove Card' as also subsequently doing what the instructions say.
Two, he can deposit additional cash into his PayPal account straight out of his bank account for which he just requires accessing the navigation bar on top and going to 'Add Funds' within it followed with doing as the instructions state.
Now in playing the observed trick, the e-mail craftily copies a message of PayPal the online-payment service routinely dispatches to subscribers during cases of failed transactions when their card company apparently didn't let the payments to get passed.
Thus, the above-stated electronic mail isn't from PayPal. Likewise there's been no rejection of recipients' transaction through the online-payment service as claimed. It's simply another fake e-mail within the onslaught of phishing e-mail campaigns which continually aim at PayPal subscribers.
Hence, clicking on the given web-link leads end-users onto a fake page that nearly exactly resembles the PayPal site. And when landing on it, they're prompted for entering personal usernames and passwords to log in. These details, however, get into the hands of the phishers who then use them for compromising those end-users' PayPal accounts and carrying out identity-theft and card fraud.
Eventually, genuine sites like PayPal encourage users for getting in touch with the companies' customer-care for informing about any account intrusion or phishing attempt alternatively additional types of online-crimes involving their name. Thus, anybody getting the afore-stated phishing e-mails should just send them to firstname.lastname@example.org before erasing them permanently.
Related article: Force 9 and TalkTalk Are the Highest Spam-Delivering ISPs
» SPAMfighter News - 18-08-2012