Serene March 31st, 2008
Update Your Account
From: PayPal Department (email@example.com)
Tuesday, April 01, 2008 12:32:19 PM
Dear PayPal User,
We recently have determined that different computers have logged onto your PayPal account, and multiple passwords failures were present before the logins.
We now need you to re-confirm your account information to us. If this is not completed till April 02, 2008, we will be forced to suspend your account Indefinitely, as it may have been used for fraudulent purposes.
We thank you for your cooperation in this manner .
Click below to confirm and verify your PayPal Account:
https://www.paypal.com/us/cgi-bin/webscr?cmd=_login-submit –> linked to http://arrakis.is.net.pl/~lee/koszyk/portal/pp2008/in.php
Note: If you choose to ignore our request, you leave us no choice but to temporary suspend your account.
PayPal Security and Anti-Fraudulent Department
I always heard about scam emails and not to login to the link given when asked to confirm or verify something as the organization wouldn’t send such an email. When I received this “Paypal” email asking me to confirm, I thought it was so funny lol Paypal will never suspend anyone’s account for ignoring their reminder or something ^^” The way it was said is also like a threat o.O So NOT Paypal service style ^^” I even went to visit their forged Paypal site too.. It looked really the same, except for the URL, even FireFox notify that it was a fake site.
For those who does not know about this kind of fraud, please do be aware of it and NEVER confirm or verify your Paypal or other bank account by following the link given in an email, directly type their URL to login. For those who do know about it, please spread the news..
I’m not sure how the frauds know that I got a Paypal account? Or did they hacked into Paypal’s information systems? I do not know.. So guys, be more careful and this is an order, not a request XD
EDIT : Even there’s a Trojan Fraud in the email o.O When I pasted the whole mail in this post, suddenly my anti-virus detected the Trojan in my blog -.-” That’s so dangerous! So, note that Trojan’s are also hidden in the fraud mail..
Taken from Kaspersky Virus list about the Trojan,
“This family of Trojans utilises spoofing technology. The Trojans themselves are contained in fake HTML pages. Messages, purportedly from banks, financial institutions, internet stores, software companies etc. are sent to users. These messages contain a link to the fake page; this link exploits the Frame Spoof vulnerability in Internet Explorer.
The Frame Spoof vulnerability is present in Internet Explorer v. 5.x and 6.x, and detailed in Microsoft Security Bulletin MS04-004. The bulletin also gives recommendations on how to recognise spoofed sites.
Once a user visits the fake site, and enters account details or personal information, these details will be sent to a malicious remote user, who will then have access to users’ confidential information.”
For more info, please visit here.