PDA

View Full Version : paypal mail



piva
16-01-2004, 08:45 PM
I received a email this morning perporting to come from paypal. Originator was in fact in russia. return address was @ do not reply@paypal.com
Dont even readit as it contains one of the nice email trogens. Luckily our email checker stopped it.

Jen C
17-01-2004, 11:08 AM
It is good that you had the appropriate protection in place to prevent these malicious spoof emails. Many ISP's now provided email viral scanning which would filter out a lot of these viruses/trojans as well.

The paypal email you recieved would most likely be this (http://www.millersmiles.co.uk/identitytheft/paypal-virus-attachment.php) one. However, they are getting more cunning and the latest spoof emails originating from what seems to be professional businesses are ones that target the security hole in Internet Explorer which allows URL's to be cloaked. You will be sent what looks like to be a legitimate email from a well known site with a URL to follow so that you can "confirm" your account details etc. Following this link will load a webpage that looks identical to the real thing, except the real URL is being cloaked and it is not actually that site which is showing in the address bar. Any personal information that is entered into the site (including credit card details) will be recorded and then probably on-sold.

Apart from general common sense in not opening any out of the ordinary emails, any requests to follow a URL to confirm personal details should be treated with great suspicion. Barclay's Bank in the UK was a recent victim of the spoof URL email hoax.

You can read about some the latest spoofed emails here (http://www.millersmiles.co.uk/identitytheft/spoof-email-and-spoof-web-page-library.htm).

This cloaked URL does not work with some other browser such as Mozilla Firebird for example, which will display the true URL in the address bar and that should alert you to the hoax.

Just something else for people to be aware of.