Fake Paypal email going around!

Talk about whatever you feel like.
Daemonfly
Redshirt
Posts: 315
Joined: Wed Aug 06, 2003 12:17 pm
Location: Pa
Contact:

Fake Paypal email going around!

Post by Daemonfly » Fri Dec 26, 2003 4:54 am

If you get a "Verify your identity" email from Paypal, DO NOT click the link & enter all your information.
Dear paypal user, We would like to inform you that we are upgrading our server to install a better protection software. So please click here and fill in the registration form again to renew your account. Paypal Administration.
I checked the link & it looks like they actually use paypal.com's own addy with a buffer overflow condition to make it point to a new address, which contains a page wanting you to fill in all your information. New "page" is actually on some porno site. To the average user, it would "look" like a perfectly fine email.

If you go directly to paypal manually, theres nothing about an upgrade whatsoever. I've forwarded it to Paypal already to have them take action.
"I used to get high on life, but pretty soon I built up a tolerance." - Arj Barker (comedian)

Dragonmaster Zoc
Redshirt
Posts: 1218
Joined: Sat Feb 15, 2003 7:57 am
Location: La Jolla, CA

Post by Dragonmaster Zoc » Fri Dec 26, 2003 5:06 am

Thanks for the heads up. I'm still waiting for my PayPal account to verify with my bank account; I'm hoping there aren't too many steps left.
- sneaky ninja - says:
I like knives.

User avatar
Felan
Buddhist Snack
Posts: 1316
Joined: Tue Feb 11, 2003 8:07 pm
Real Name: Chris
Gender: Male
Location: Georgia
Contact:

Re: Fake Paypal email going around!

Post by Felan » Fri Dec 26, 2003 3:46 pm

I got this with my auto eBay email bill thingy, thought it might be useful to post.

Some community members have reported receiving deceptive emails claiming to come from eBay, PayPal, or other popular Web sites. The people who send these emails (also known as "spoof" or "phishing" emails) hope that unsuspecting recipients will reply or click on a link contained in the email and then provide sensitive personal information.

You can take a few simple steps to protect your account and prevent senders of deceptive emails from doing harm:
* If you need to update your personal or financial information on eBay, type the eBay Web address into your browser or use a bookmarked link.
* Use My eBay or the Site Map to find pages on eBay, rather than relying on links from emails.
* Report suspicious email immediately by forwarding it to spoof@ebay.com.
eBay's Help system provides detailed information about spoof emails, identity theft, and what to do if your eBay account has been compromised.

User avatar
Fixer
Redshirt
Posts: 6608
Joined: Fri Feb 14, 2003 2:27 pm
Real Name: David Foster
Gender: Male
Contact:

Post by Fixer » Fri Dec 26, 2003 3:56 pm

I got this a while back and just thought it a fluke. Didn't realize it was widespread. :/ Since I have never used PayPal I knew it was bullshit and just deleted it.
Image
I don't care who's right, who's wrong, or what you meant to say. Only thing I care about is the Truth. If you have it, good, share it. If not, find it. If you want to argue, do it with someone else.

User avatar
Phoenix Talon
Redshirt
Posts: 1087
Joined: Wed Oct 15, 2003 12:02 am
Location: Wilkes-Barre PA
Contact:

Post by Phoenix Talon » Fri Dec 26, 2003 4:18 pm

Well, this put a damper On some things. Namely the willingness of my parents to use their Credit card online to buy me stuff.... -_-
Image

User avatar
JonnWood
Redshirt
Posts: 2094
Joined: Fri Feb 14, 2003 7:19 pm
Gender: Male
Location: Behind you.
Contact:

Post by JonnWood » Fri Dec 26, 2003 8:26 pm

Does anyone know how to get a paypal account from the Bahamas? i live here, and it's not listed.

User avatar
elroy
Redshirt
Posts: 2133
Joined: Tue Apr 08, 2003 9:01 pm
Location: netherlands

Post by elroy » Fri Dec 26, 2003 9:30 pm

They're unwilling to use their CC because there simply are scam artists on the internet ? Then why are they willing to use it in stores irl ? There are scam artists irl too. If they just acknowledge the fact there are people who are trying to scam you out of money everywhere, and make sure they recognize it, there should be no problem..
Professional hitman

Daemonfly
Redshirt
Posts: 315
Joined: Wed Aug 06, 2003 12:17 pm
Location: Pa
Contact:

Post by Daemonfly » Sat Dec 27, 2003 6:49 am

This specific "scam" uses a "feature" in IE that allows the http://www.paypal.com address to be completely spoofed, so it looks as if you're actually on Paypal's page. I know this would catch a lot of people who were someone new to the net. Don't beleive this works in Opera or Mozilla.

if you have to use IE, the MyIE2 plugin will supposedly fix the spoofing issue, and give you great options like tabbed browsing, etc.. http://www.myie2.com/html_en/home.htm
"I used to get high on life, but pretty soon I built up a tolerance." - Arj Barker (comedian)

User avatar
Teranfirbt
How Funky Strong?
Posts: 4523
Joined: Sat Feb 15, 2003 5:57 am
Location: Beaver Creek, OR

Post by Teranfirbt » Sat Dec 27, 2003 9:59 am

Bleh, why keep putting up with IE's bullshit... just get opera >_>
I really need a new sig....
Image
Deacon wrote:I don't think my birth canal can handle it
Portland %#!&ing Oregon
Just Beat It, Beat It
No One Wants To Be Defeated
Showin' How Funky Strong Is Your Fight
It Doesn't Matter Who's Wrong Or Right

Phantom Snowcat
Redshirt
Posts: 467
Joined: Sun Feb 16, 2003 9:10 am
Location: United States of Hipocrites.

Post by Phantom Snowcat » Sat Dec 27, 2003 12:21 pm

I stopped using paypal because we got scammed out of FOUR THOUSAND FUCKING DOLLARS


needless to say our insurance company was nice enough to help us out, but no more paypal here.
If you dont like the way i drive, then get off of the sidewalk.

User avatar
elroy
Redshirt
Posts: 2133
Joined: Tue Apr 08, 2003 9:01 pm
Location: netherlands

Post by elroy » Sat Dec 27, 2003 1:30 pm

/me points to sig.. 8)
Professional hitman

User avatar
Blaze
Redshirt
Posts: 20221
Joined: Fri Feb 14, 2003 10:31 pm
Location: Michigan

Post by Blaze » Sat Dec 27, 2003 5:22 pm

I just use the Avant plugin. I believe it helps stop the spoofing issue as well as tabbed browsing, popup block, the general stuff.
Image

User avatar
Deacon
Shining Adonis
Posts: 44234
Joined: Wed Jul 30, 2003 3:00 pm
Gender: Male
Location: Lakehills, TX

Post by Deacon » Sat Dec 27, 2003 6:04 pm

I can't stand all those dumbass skins/expasion-packs for IE. If I want to use something in which I can disable cookies and javascript and such, I use Firebird. If I want to use something that will work with everything and never have a problem with plugins and such, I use IE. I works for my everyday browsing better than Firebird does, mainly because I'm used to and prefer the way IE works compared to Firebird. Little shortcuts and keystrokes, etc.

By the way, I highly recommend that you all use Thunderbird ( http://www.mozilla.org/projects/thunderbird/ ) as a replacement for Outlook Express and other mail clients.
The follies which a man regrets the most in his life are those which he didn't commit when he had the opportunity. - Helen Rowland, A Guide to Men, 1922

User avatar
elroy
Redshirt
Posts: 2133
Joined: Tue Apr 08, 2003 9:01 pm
Location: netherlands

Post by elroy » Sat Dec 27, 2003 10:06 pm

I know Firbird is better than IE cause of.. many reasons. But what's better about thunderbird ? My isp filters out my spam so.. that's not gonna win me over. Anything else ?
Professional hitman

User avatar
TopCat
Redshirt
Posts: 3783
Joined: Wed May 21, 2003 1:34 am
Gender: Male
Contact:

Post by TopCat » Sat Dec 27, 2003 11:13 pm

If thunderbird is anything like the packaged email client for Mozzy (why the hell do you want to miss out on such an excellent suite, eh?) then I'm not down.

Other Notes: theres a easy way to read emails without reading them in OutLook express, simply right click the email, go to properties, click the second tab at the top (message header), and theres a button at the bottom that says Message Source. You can read the email with all the html there but not working, and everything, deciding if you really want to open the email or not. Also, there will be the link, to something like http://www.paypal.com%01%00@pornsite.com/paypalscam/ which will pretty much show its a dead giveaway. Btw, the inq reports that this does effect mozzy, but it shows a little [] Block after the first part of the url. the %01%00 in conjunction make this block, which renders the rest of the line invisible in IE.

BAM!
hahaha i don't come to these forums anymore :x

Post Reply

Who is online

Users browsing this forum: No registered users and 1 guest