![[personal profile]](https://www.dreamwidth.org/img/silk/identity/user.png){kind=small}
psychic paypal phishers?
Jan. 23rd, 2009 04:51 pmI got a phishing spam from paypal today.
It claimed to come from service@paypal.com, which is where such an email would have come from if it were real. I know because I just got a for real chargeback notice email from them using that address (argh another story, a mistake, but it could take till May for them to undo it).
It looked fairly realistic - except that Paypal does not put links to go somewhere to login in their emails. And of course if you actually mouse over the link and look at the status bar you'll see it actually goes to a domain with a name like lasersunenergy.com!
Can you spot their other major blooper?
-----
PayPal is constantly working to ensure security by regularly screening the accounts in our system. We recently reviewed your account, and we need more information to help us provide you with a secure service. Until we can collect this information, your access to sensitive account features will be limited. We would like to restore your access as soon as possible, and we apologize for the inconvenience.
Why is my account access limited?
Your account access has been limited for the following reason(s):
# 24 Oct. 2009: We would like to ensure that your account was not accessed by an unauthorised third party. Because protecting the security of your account is our primary concern, we have limited access to sensitive PayPal account features. We understand that this may be an inconvenience but please understand that this temporary limitation is for your protection.
(Your case ID for this reason is PP-069-848-295.)
How can I restore my account access?
Please visit the https://www.paypal.com/us/cgi-bin/webscr and complete the "Security Measures."
----------------
Yep, Someone accessed my account 9 months in the future! I'm impressed.
The rest of the paragraph is written a bit oddly. The british spelling is used for unauthorized. Ensure isn't really used correctly. All PayPal account features would be sensitive.
but overall that part is still better than most spams & phishes I've seen.
So how did they know it would be on 10-24-09? Is that the date they'd log in if I'd fallen for it?
It claimed to come from service@paypal.com, which is where such an email would have come from if it were real. I know because I just got a for real chargeback notice email from them using that address (argh another story, a mistake, but it could take till May for them to undo it).
It looked fairly realistic - except that Paypal does not put links to go somewhere to login in their emails. And of course if you actually mouse over the link and look at the status bar you'll see it actually goes to a domain with a name like lasersunenergy.com!
Can you spot their other major blooper?
-----
PayPal is constantly working to ensure security by regularly screening the accounts in our system. We recently reviewed your account, and we need more information to help us provide you with a secure service. Until we can collect this information, your access to sensitive account features will be limited. We would like to restore your access as soon as possible, and we apologize for the inconvenience.
Why is my account access limited?
Your account access has been limited for the following reason(s):
# 24 Oct. 2009: We would like to ensure that your account was not accessed by an unauthorised third party. Because protecting the security of your account is our primary concern, we have limited access to sensitive PayPal account features. We understand that this may be an inconvenience but please understand that this temporary limitation is for your protection.
(Your case ID for this reason is PP-069-848-295.)
How can I restore my account access?
Please visit the https://www.paypal.com/us/cgi-bin/webscr and complete the "Security Measures."
----------------
Yep, Someone accessed my account 9 months in the future! I'm impressed.
The rest of the paragraph is written a bit oddly. The british spelling is used for unauthorized. Ensure isn't really used correctly. All PayPal account features would be sensitive.
but overall that part is still better than most spams & phishes I've seen.
So how did they know it would be on 10-24-09? Is that the date they'd log in if I'd fallen for it?
