[Macaholic]

Got a fairly stock reply from PayPal:

Dear XXX XXXXX,

Thanks for taking an active role by reporting suspicious-looking emails.
The email you forwarded to us is a phishing email, and our security team
is working to disable it.

-------------------------
What is a phishing email?
-------------------------
Phishing emails attempt to steal your identity and will often ask you to
reveal your password or other personal or financial information. PayPal
will never ask for your password over the phone or in an email and will
always address you by your first and last name.

Take our Fight Phishing Challenge at
https://www.paypal.com/fightphishing to learn 5 things you should know
about phishing. You'll also see what we're doing to help fight fraud
every day.

-------------------------
You've made a difference.
-------------------------
Every email counts. By forwarding a suspicious-looking email to
[email protected], you've helped keep yourself and others safe from
identity theft.

Thanks,

The PayPal Team
_______________________________________________________________________
This email is sent to you by the contracting entity to your User
Agreement, either PayPal Inc, PayPal Pte. Ltd or PayPal (Europe) S.à
r.l. & Cie, S.C.A. Société en Commandite par Actions, Registered Office:
5th Floor 22-24 Boulevard Royal L-2449, Luxembourg RCS Luxembourg B 118
349.
_______________________________________________________________________

 

[eggman]

Interesting:

I received 2 separate emails to a hotmail account that I use mainly to collect spam and sign up for online newsletters. They did not have my real name, they also did not bother building a name out of the info that hotmail has for that account. The emails didn't appear to have any known nastiness in them. They were addressed to "Dear Paypal member" and the heading for the html message read "Limited Account Access Details" and otherwise were very similar to the one that Macaholic got. This is probably because they are simply copying real paypal messages to build their own - rather than messing up with the traditional phishing grammatical gaffs that used to give some of the clumsier attempts away.

It is possible that there this is an massive attempt to coerce people into logging into their paypal accounts. The vanishingly small number who are possibly infected with a keylogger who do so might be worth as much to a criminal as the vanishingly small number who actually buy the products that the spammers are pushing. Spam is cheap to send, sadly for us all.

 

[Ottawaman]

Can you spot the fake?

Fun little quiz from McAfee...identifying spoofed sites and other scams. Not hard, but fun to spot the giveaways.

http://www.siteadvisor.com/quizzes/phishing_0707/


6/10 but I didn't make the pictures full size.

 

[ErnstNL]

The keylogger that installed itself on my PC was undetected by MacAfee, AVG, Panda, Zonealarm, and CA antivirus. If it was detected, it couldn't be removed by Kaspersky.
The only software that could remove it was the latest Norton suite.
Just to show you there isn't a safe computer anywhere in this world connected to the internet.

Yay 1000 posts!beejacon

 

[Macaholic]

Fun little quiz from McAfee...identifying spoofed sites and other scams. Not hard, but fun to spot the giveaways.

6/10 but I didn't make the pictures full size.

I got 9 out of 10! Stupid me... my eyes glazed over trying to read the ridiculously long URL in the one I missed.

That Capitol One one was tough for me but I got it!. The page on the left has bad punctuation and asked for the credit card's last three numbers on the back, while the right one asked for one's Social Security #!! Crooks need the credit card's numbers on BOTH the front and back to make online purchases, and I've never been asked for those numbers on the back unless I WAS buying something... but man, that Social Security #... that's a NO-NO as well!

The problem with this test? It also acts as an excellent primer for those asses wanting to build a better trap!