Stamp Community Family of Web Sites
Thousands of stamps, consistently graded, competitively priced and hundreds of in-depth blog posts to read








Stamp Community Forum
 
Username:
Password:
Save Password
Forgot your Password?

This page may contain links that result in small commissions to keep this free site up and running.

Welcome Guest! Registering and/or logging in will remove the anchor (bottom) ads. It's Free!

For Your Awareness -- Another "Paypal" Phishing Attempt

 
To participate in the forum you must log in or register.
Author Previous TopicReplies: 9 / Views: 3,157Next Topic  
Pillar Of The Community
United States
2480 Posts
Posted 12/08/2011   5:41 pm  Show Profile Bookmark this topic Add tomiseksj to your friends list Get a Link to this Message
I recently received another bogus email claiming to be from Paypal. Each time I get something like this I pass it on to the U.S. Federal Trade Commission's spam email address (spam@uce.gov) and to whatever company is being falsely represented (in this case, spoof@paypal.com).

Here is a copy of the email I got (the text strings in bold were links):


Quote:
From: service @paypall.com
To: Steven Tomisek
Sent: Monday, December 05, 2011 6:30 PM
Subject: [Norton AntiSpam]Notification of Limited Account Access RXI034


Hello Steven Tomisek,

As part of our security measures, we regularly screen activity in the PayPal system. We recently contacted you after noticing an issue on your account.

We requested information from you for the following reason:

A recent review of your account determined that we require some additional information from you in order to provide you with secure service.

Case ID Number: PP-897-368-172

This is a second reminder to log in to PayPal as soon as possible. Once you log in, you will be provided with steps to restore your account access.

Be sure to log in securely by using the following link:
Click here to login and restore your account access


Once you log in, you will be provided with steps to restore your account access. We appreciate your understanding as we work to ensure account safety.

In accordance with PayPal's User Agreement, your account access will remain limited until the issue has been resolved. Unfortunately, if access to your account remains limited for an extended period of time, it may result in further limitations or eventual account closure. We encourage you to log in to your PayPal account as soon as possible to help avoid this.

To review your account and some or all of the information that PayPal used to make its decision to limit your account access, please visit the Resolution Center. If, after reviewing your account information, you seek further clarification regarding your account access, please contact PayPal by visiting the Help Center and clicking "Contact Us".

We thank you for your prompt attention to this matter. Please understand that this is a security measure intended to help protect you and your account. We apologize for any inconvenience.

Thanks,

PayPal Account Review Department

Please do not reply to this email. This mailbox is not monitored and you will not receive a response. For assistance, log in to your PayPal account and click the Help link in the top right corner of any PayPal page.

----------------------------------------------------------------
Copyright © 1999-2011 PayPal. All rights reserved.

PayPal Email ID PP522

Send note to Staff

Pillar Of The Community
Canada
617 Posts
Posted 12/08/2011   6:18 pm  Show Profile Bookmark this reply Add Dave9911 to your friends list  Get a Link to this Reply
Yup, I've seen this one too. My fav though, was one purporting to be from a US bank that I've NEVER done business with, asking me to log into my account (which I don't have of course) as it's currently locked out until I give away my password to them.
Send note to Staff  Go to Top of Page
Forum Dad
Learn More...
USA
2058 Posts
Posted 12/08/2011   8:00 pm  Show Profile Bookmark this reply Add bobby131313 to your friends list  Get a Link to this Reply
Notice it addresses you by your real name. They got that from hacking an email account that contained an email to or from you. Never attach your full real name to an email address that you use. Every single email you send then has your full real name attached, then every person that gets an email from you can be hacked and your full real name and email address is acquired by the hacker. Ever forwarded a goofy email from your sister with hundreds of email addys in the CC field? That's hundreds more accounts that can be hacked to give up your info... and then all those people keep forwarding......
Send note to Staff  Go to Top of Page
Forum Dad
Learn More...
USA
2058 Posts
Posted 12/08/2011   8:03 pm  Show Profile Bookmark this reply Add bobby131313 to your friends list  Get a Link to this Reply

Quote:
Each time I get something like this I pass it on to the U.S. Federal Trade Commission's spam email address (spam@uce.gov) and to whatever company is being falsely represented (in this case, spoof@paypal.com).


FYI, if you don't paste the full email headers into the body before you forward it, it's useless to them to track the spammer.
Send note to Staff  Go to Top of Page
Pillar Of The Community
United States
2480 Posts
Posted 12/08/2011   8:50 pm  Show Profile Bookmark this reply Add tomiseksj to your friends list  Get a Link to this Reply
Interestingly, neither the FTC nor PayPal includes that header guidance in their instructions.


Quote:
About Spam & Phishing
Email: spam@uce.gov
Forward unsolicited commercial email (spam), including phishing messages, directly to the FTC at spam@uce.gov. These messages will be stored in a database law enforcement agencies use in their investigations.


Quote:
Phishing is an illegal attempt to "fish" for your private, sensitive data. If you believe you've received a phishing email, follow these steps right away:
1.Forward the entire email to spoof@paypal.com.
2.Do not alter the subject line or forward the message as an attachment.
3.Delete the suspicious email from your email account.

We'll send you an email response to let you know if the email is indeed fraudulent. In the meantime, don't click on any links or download any attachments within the suspicious email.


As to the tying of my name to my email address, I'm afraid that round is already downrange and there is no calling it back. But it is good advice for those who can still take advantage.
Send note to Staff  Go to Top of Page
Forum Dad
Learn More...
USA
2058 Posts
Posted 12/08/2011   9:08 pm  Show Profile Bookmark this reply Add bobby131313 to your friends list  Get a Link to this Reply
Just sent you an email..... who's it from?
Send note to Staff  Go to Top of Page
Pillar Of The Community
United States
2480 Posts
Posted 12/08/2011   10:05 pm  Show Profile Bookmark this reply Add tomiseksj to your friends list  Get a Link to this Reply
Sorry for the delay -- had to drop the dog off at the Vet for an am surgery.

As best as I can tell, NotTheSpammer@spoof.com is really:

<< Redacted headers to save us from the spambots >>
Send note to Staff  Go to Top of Page
Forum Dad
Learn More...
USA
2058 Posts
Posted 12/09/2011   08:30 am  Show Profile Bookmark this reply Add bobby131313 to your friends list  Get a Link to this Reply
Exactly my point. You had to use the headers to see who it was really from. Outwardly all you saw was NotTheSpammer@spoof.com. If you forward my email without including the headers, all that information is completely lost to the recipient. They can't track it at all. If you have another email address forward it to yourself and you'll see what I mean.
Send note to Staff  Go to Top of Page
Pillar Of The Community
United States
2480 Posts
Posted 12/09/2011   09:26 am  Show Profile Bookmark this reply Add tomiseksj to your friends list  Get a Link to this Reply
Now you've really got me wondering why the FTC's instructions don't tell people to copy the header information into the body of the email.
Send note to Staff  Go to Top of Page
Pillar Of The Community
Canada
617 Posts
Posted 12/09/2011   10:42 am  Show Profile Bookmark this reply Add Dave9911 to your friends list  Get a Link to this Reply
Thanks for that Bobby, I hadn't realized either than when forwarding the headers in the email you received are gone. Good info :)
Send note to Staff  Go to Top of Page
  Previous TopicReplies: 9 / Views: 3,157Next Topic  
 
To participate in the forum you must log in or register.

Go to Top of Page

Disclaimer: While a tremendous amount of effort goes into ensuring the accuracy of the information contained in this site, Stamp Community assumes no liability for errors. Copyright 2005 - 2026 Stamp Community Family - All rights reserved worldwide. Use of any images or content on this website without prior written permission of Stamp Community or the original lender is strictly prohibited.
Privacy Policy / Terms of Use    Advertise Here
Stamp Community Forum © 2007 - 2026 Stamp Community Forums
It took 0.33 seconds to lick this stamp. Powered By: Snitz Forums 2000 Version 3.4.05