1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

New paypal + CC scam, watch out!

Discussion in 'BlackHat Lounge' started by Junkfood00, Feb 24, 2013.

  1. Junkfood00

    Junkfood00 Elite Member

    Joined:
    Sep 13, 2011
    Messages:
    1,949
    Likes Received:
    1,336
    I just received this email:

    Code:
    -------------------------------------------------- --------------------
    How  To Activate Your PayPal  Account.
    --------------------------------------------------  --------------------
    
    Dear  Customer,
    
    --------------------------------------------------  --------------------
    
    Our Technical Service department has recently  updated our online services, due to this upgrade we sincerely call your  attention to follow below link and reconfirm your'online account  details.
    
    It's easy:
    
    Click on the link below to open a secure  browser window.
    Confirm that you are the owner of the account, then follow  the instructions.
    
    <url snipped>
    
    We  use the latest security measures to ensure that your PayPal account is safe and  secure.
    The administration asks you to accept our apologies for inconvenienc  caused and expresses gratitude for  cooperation.
     
    --------------------------------------------------  --------------------
    Help:
    [URL]https://www.paypal.com/us/cgi-bin/helpweb?cmd=_help[/URL]
    Security  Center:
    [URL]https://www.paypal.com/us/security[/URL]
    
    Please  do not reply to this email. We can not send a response from this address.
    The site in the link takes you to a phishing page that yeah, looks exactly like the official site but nothing is functional except the login form.

    Now the new thing that I haven't encountered before is when I tried to login to see what would happen, it accepted whatever I entered and showed the login process, after that several forms were presented where personal data was asked to be entered with credit card details.

    This is phishing, meaning they will STEAL your account and your money!

    Things look very legit and since PayPal is notorious for limiting accounts, many people may fall for this.

    A few signs to determine if an email is legit:
    1. It always says "PayPal", no small letter in the middle of the name
    2. They address you with your initial name
    3. They publish such developments/upgrades on their own blogs, official pages
    4. There are no typo or grammatical mistake
    5. Type paypal.com into your browser to tell if what the email is saying is true
     
    • Thanks Thanks x 8
  2. carlikito

    carlikito Regular Member

    Joined:
    Dec 28, 2009
    Messages:
    350
    Likes Received:
    214
    Thanks.

    Like Junkfood mentioned, the fastest giveaway that's a fake email is that a real Paypal email will address you by name.

    Also if you get one of those emails, not just from Paypal but from any other place and you want to make sure your account is ok, close your browser, clear your cookies and files and then go directly to the mainsite in your browser and check there.

    Be safe.
     
  3. MadMaddy

    MadMaddy Junior Member

    Joined:
    Dec 6, 2012
    Messages:
    165
    Likes Received:
    282
    Location:
    221B Baker Street
    Thanks for notifying about this new scam mail junkfood

    Even though how fool proof they try to be, there is always 'The Sign of The God' left behind in every scam/fake mails or programs


     
  4. JokerNikx

    JokerNikx BANNED BANNED

    Joined:
    Sep 8, 2012
    Messages:
    834
    Likes Received:
    526
    Thanks ,
    This Will Surly Save 1000's Around Here :)

    Cheers,
    Nik
     
  5. Duffers5000

    Duffers5000 Elite Member

    Joined:
    Apr 1, 2012
    Messages:
    2,466
    Likes Received:
    7,615
    At this stage I delete pretty much anything that comes into my mail. Rule number one if I need to log in to an account I go to the webpage manually and log into the account.

    Never click a link on an email no matter how legit it looks.
     
  6. Junkfood00

    Junkfood00 Elite Member

    Joined:
    Sep 13, 2011
    Messages:
    1,949
    Likes Received:
    1,336
    They are getting smarter lol, now when you enter details, it will show a login process and then displays the home page. Then with big fat text it says that your account is limited and you need to verify it. You just have to: re-enter password, enter question and answer (in hope you enter the old ones), credit card and your full address. But apparently, they are not smart enough, they still fucking mess up with the English.

    This is actually getting scary, not because I received it but because it looks very legit and some people might fall for it.

    THIS IS ALL A PHISHING SITE, DO NOT FALL FOR IT. If you want to make sure you're not limited, type paypal.com into your browser.

    Just so you people know what I'm talking about, this is the site. Again, do not fucking enter any data of yours.

    Code:
    http://grogot.net/10000000/585274f8.85274f8d.5d39d25.274f8d8.585274f8d848575.e6d57323sde8d56s4d.f545d43146e84d5d.d39d25d39d2585274f8d8fd.485758d27f8166.cmd=_help=t=solutionTab/fichiers/