Beware - New PayPal Phishing Email

Discussion in 'Computer Security' started by techguy, Nov 19, 2005.

  1. techguy

    techguy Bit Poster

    30
    1
    15
    Hello guys,
    Yesterday I received a fake paypal email from an anonymous crook, with the following content. This message is to alert you all. It took me about an hour to investigate and prepare these screen interfaces.

    Phishing Email
    [​IMG]

    Fake Paypal Login Page
    [​IMG]

    I decided to investigate this email further, and took the following steps to find the origin of the fake email.

    Original Paypal Login Page
    [​IMG]

    Fake Paypal Eamil Header
    [​IMG]

    Original Paypal Email Header
    [​IMG]

    IP Address verification - Original Paypal IP Address
    [​IMG]

    IP Address verification - Fake Paypal IP Address
    [​IMG]

    Hope this would help. If you have already received such type of emails in your mail box, then please forward it to [email protected]. For more information, please visit https://www.paypal.com/cgi-bin/webscr?cmd=xpt/general/TopQuestion4-outside

    Good luck to all.
    Techguy.
     
    Certifications: MCSAS,MCSES,MCDBA,MCAD.NET,MCSD.NET,CCNA
    WIP: C|EH,CISSP,CISM
  2. moominboy

    moominboy Gigabyte Poster

    thanks for that techguy!

    it's kinda scary how genuine they look though, i might've noticed the padlock was missing and the address was wrong but my wife....? :tongue

    i'll show her pronto! thanks again mate.
     
    Certifications: ECDL
    WIP: A+
  3. JonnyMX

    JonnyMX Petabyte Poster

    5,257
    220
    236
    I got hit by one of these (similar) a month or two ago.
    I had an email from 'paypal' confirming payment to someone for a Ebay purchase. We didn't recognise it, and it was rather a lot of money.
    There was a link on the email 'click here to dispute payment' which with hindsight is uncharateristically helpful for paypal.
    I clicked it and was taken to what looked exactly like the paypal login page. I logged in but was then taken to a page asking me to confirm all my personal details like name, address and bank account.
    It was only then that I thought 'hang on...' and looked a bit closer.
    I was masterfully done, everything looked completely genuine.
    Anyone could have been caught out by it.
    I changed my paypal password and seem to have got away with it...
     
    Certifications: MCT, MCTS, i-Net+, CIW CI, Prince2, MSP, MCSD

Share This Page

Loading...
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.