Tuesday, August 22, 2006

paypal scam

From - Tue Aug 22 14:23:15 2006
X-Account-Key: account3
X-UIDL: MSG1156248347.10
X-Mozilla-Status: 1011
X-Mozilla-Status2: 00000000
X-Message-Status: n:0
X-SID-PRA: admin@login84.paypalstat03524.paypal.com
X-SID-Result: TempError
X-Message-Info: LsUYwwHHNt1hZ34kQ3zoyp1Tc1VC+u7wXjBJ1l5CgHM=
Received: from localhost ([221.132.40.4]) by bay0-mc7-f2.bay0.hotmail.com with Microsoft SMTPSVC(6.0.3790.2444);
Tue, 22 Aug 2006 05:05:46 -0700
Delivered-To:
Received: (qmail 9333 by uid 749); Tue, 22 Aug 2006 07:02:13 +0700
Date: Tue, 22 Aug 2006 07:02:13 +0700
Received: from localhost (203.160.1.51)
by localhost with SMTP;
Received: (qmail 9333 by uid 749); Tue, 22 Aug 2006 07:02:13 +0700
Message-Id: <20060822140213.9339.qmail@localhost>
To:
Subject: RE: Message ID 749188812304 - Alert Message
From:
MIME-Version: 1.0
Content-Type: text/html; charset="iso-8859-1"
Content-Transfer-Encoding: 8bit
Return-Path: boltzie@hotmail.com
X-OriginalArrivalTime: 22 Aug 2006 12:05:47.0681 (UTC) FILETIME=[4D99C910:01C6C5E3]










PayPal






































.

Information Regarding Your account:
Dear *@hot*.com PayPal Member!



Attention! Your PayPal account has been violated!



Someone with ip address 03.2.002.049 tried to access
your personal account!



Please click the link below and enter your
account information to confirm that you are not
currently away. You have 3 days to confirm account
information or your account will be locked.
















Click here to activate your account








You can also confirm your email address by logging into
your PayPal account at

http://paypal.com/. Click on the "Confirm email"
link in the Activate Account box and this is your
confirmation number: 1025-5930-1911-8015-2155



Thank you for using PayPal!

The PayPal Team
Please do not reply to this
e-mail. Mail sent to this address cannot be answered.
For assistance,
log in
to your PayPal account and choose the "Help" link in the
footer of any page.


PayPal Email ID PP059

posted by boluak at 9:52 pm

4 Comments:

Blogger boluak said...

On contacting paypal, they sent the following information:
Thank you for contacting us about a potential fraudulent (spoof) email
or Web site. We will investigate this situation immediately and inform
you of the results in a separate email. If you are reporting an email or
a Web site that is asking for personal financial information, it is best
to assume it is fake until you receive a response from us.

In order to reply as quickly as possible, we are sending you an
automated response about the following topics:

1. IDENTIFYING FAKE EMAILS AND WEB SITES
2. USING EBAY TOOLBAR WITH ACCOUNT GUARD
3. PROTECTING YOUR ACCOUNT AND INTERNET SECURITY

Please submit other questions or concerns through our Contact Us System,
which can be accessed by clicking on the "help" button on the top of any
eBay page. This allows us to dedicate our resources appropriately.

1. IDENTIFYING FAKE EMAILS AND WEB SITES
The best defense against fake emails and Web sites is learning how to
spot them. You can learn more about fake emails and Web sites through
our Spoof Tutorial at the following Web page:

http://pages.ebay.com/education/spooftutorial/

You can also use My Messages (located at the top of the My eBay page) to
detect Phishing emails. If an email from eBay affects your eBay account
or asks for personal information, it's now in My Messages. Any email
sent to your registered eBay email address from eBay that concerns your
account or requests personal information will now appear in My Messages.

2. USING EBAY TOOLBAR WITH ACCOUNT GUARD
One of the best tools to protect yourself from fraudulent (spoof) Web
sites is eBay Toolbar with Account Guard. The Account Guard feature
indicates when you are on an eBay or PayPal Web site and warns you if
you are on a known spoof site. To learn more about eBay Toolbar with
Account Guard open a new browser and type www.ebay.com/ebay_toolbar into
the address bar.

3. PROTECTING YOUR ACCOUNT AND INTERNET SECURITY
We recommend that you keep your browser, operating system, and virus
protection software up to date. Check for updates at the "Windows
Update" link on www.microsoft.com and scan your computer for viruses
often.

If you think your personal information has been compromised in any way,
you should take immediate steps to change your eBay, PayPal, and email
passwords. You should also contact your bank to see if there has been
any suspicious activity on your account. You can find more information
about protecting your identity at the following help page:

http://pages.ebay.com/help/confidence/problems-identity-theft.html

Thank you again for sending us your report. We appreciate your efforts
to keep eBay and PayPal safe.

Regards,

eBay Trust & Safety Team

10:18 pm  
Blogger boluak said...

here's a usefull link from paypal advicing customers concerning this type of email fraudulent activities:
https://www.paypal.com/ie/cgi-bin/webscr?cmd=p/gen/email-security

meanwhile paypal responded quickly to the alert i (and i beleive other concernde customers) sent to them.

10:48 pm  
Blogger boluak said...

Do Not Follow Unsolicitated links:

In order to convince users to visit their sites, attackers often use
URL encoding, IP address variations, long URLs, intentional
misspellings, and other techniques to create misleading links. Do not
click on unsolicited links received in email, instant messages, web
forums, or internet relay chat (IRC) channels. Type URLs directly into
the browser to avoid these misleading links. While these are generally
good security practices, following these behaviors will not prevent
exploitation of this vulnerability in all cases, particularly if a
trusted site has been compromised or allows cross-site scripting.

--from a Microsoft Security Bulletin

3:35 pm  
Blogger Jaxon Oakley said...

Paper scam has been popular among the ranks of the anti-corruption of the country. This scam has been caught red handed for the removal of the bad elements from the country.

6:54 pm  

Post a Comment

<< Home