1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

PAYPAL SCAM ALERT! Please take a look and protect yourself!

Discussion in 'BlackHat Lounge' started by sashablack, Apr 8, 2015.

  1. sashablack

    sashablack Elite Member

    Joined:
    Jan 8, 2010
    Messages:
    3,697
    Likes Received:
    2,067
    Gender:
    Male
    Hey guys and girls,

    Got this in my inbox this morning, not only is the return email not from paypal the grammar and spelling is also horrific! I would love to catch this asshole and knock him the fuck out! :)

    Be careful and don't get scammed buy this fraudulent email!


    [​IMG]

    -Sasha
     
    • Thanks Thanks x 5
  2. xrfanatic

    xrfanatic Jr. VIP Jr. VIP

    Joined:
    Aug 28, 2010
    Messages:
    419
    Likes Received:
    176
    Location:
    http://bit.ly/slb64
    Home Page:
    I have a good custom to check the balances on various sites always through address bar by typing the address manualy what is something I recommend to anybody, but I know there are many who click things like that, thanks for this post, hopefully this will save someone from being scammed.
     
  3. Leith

    Leith Jr. Executive VIP Jr. VIP

    Joined:
    Oct 30, 2011
    Messages:
    5,716
    Likes Received:
    9,072
    Can't believe people would actually fall for this with that sort of ridiculous grammar...
     
    • Thanks Thanks x 1
  4. M4XW3LL

    M4XW3LL Jr. VIP Jr. VIP

    Joined:
    Feb 5, 2013
    Messages:
    1,094
    Likes Received:
    1,275
    I got that email too and I'm still waiting for Confirms
     
  5. JasonS

    JasonS Jr. VIP Jr. VIP

    Joined:
    Sep 15, 2012
    Messages:
    3,034
    Likes Received:
    929
    That's why I always use this solution in Gmail "authentication icon for verified senders".

    To enable this, go to your account settings > labs > and enable.
     
  6. NoGameNoLife

    NoGameNoLife Regular Member

    Joined:
    Jun 21, 2014
    Messages:
    234
    Likes Received:
    70
    I don't understand how someone could copy the design that good than fail wiith grammar, if they so bad at grammar can't they copy official paypal email or something...
     
  7. snarky

    snarky Junior Member

    Joined:
    Nov 21, 2009
    Messages:
    104
    Likes Received:
    58
    This scam is as old as Paypal itself
     
  8. prinse

    prinse Power Member

    Joined:
    Feb 2, 2014
    Messages:
    654
    Likes Received:
    158
    Location:
    Behind You
    So if someone clicked verify what would happen?
     
  9. Leith

    Leith Jr. Executive VIP Jr. VIP

    Joined:
    Oct 30, 2011
    Messages:
    5,716
    Likes Received:
    9,072
    They would have to log into their Paypal (through a sly phishing form, that is well designed), probably answer their security questions etc before being redirected to the official Paypal homepage.
     
  10. srb888

    srb888 Elite Member

    Joined:
    Jul 30, 2008
    Messages:
    3,267
    Likes Received:
    5,081
    Gender:
    Male
    Occupation:
    WebzSurfer
    Location:
    Sun, Mon, Tue, WTF, Sat!!! :)
    I get spoof mail like that quite often, and I forward it to [email protected]. they always email me that it is a phising email and I did good blah blah... I Dont think they do anything to catch those scammers. Period. You're on your own.
     
  11. TimothyEyton

    TimothyEyton Junior Member

    Joined:
    Dec 30, 2013
    Messages:
    129
    Likes Received:
    63
    To be more specific, if you click on the "verify" link you are sent to a website impersonating Paypal. The site will look just like Paypal except the login form is actually an email form. So when you enter your username and password it gets emailed to the scammer.


    You're right, I don't think they do too much. But they'll usually atleast do a whois lookup on the domain and send a complaint to the phishing domains Web Hosting company and/or Domain Registrar. I'm guessing maybe they send a complaint to Google too via "https://www.google.com/safebrowsing/report_phish/". That way people will get those popups in their browser (and on Google SERPs) telling them it's an unsafe website.
     
  12. sirmbhe

    sirmbhe Newbie

    Joined:
    Jan 22, 2015
    Messages:
    13
    Likes Received:
    3
    thanks for the alert, man
     
  13. The Scarlet Pimp

    The Scarlet Pimp Senior Member

    Joined:
    Apr 2, 2008
    Messages:
    877
    Likes Received:
    3,311
    Occupation:
    Chair moistener.
    Location:
    Cyberspace
    considering the grammar and spelling on usenet, blogs, and forums i'm not surprised that people fall for this. :D
     
  14. sashablack

    sashablack Elite Member

    Joined:
    Jan 8, 2010
    Messages:
    3,697
    Likes Received:
    2,067
    Gender:
    Male
    Just got another one, this frreaking guy does not give up!

    This is where the link goes to: (Crappy Phishing Link) REMOVED FOR SAFETY - Mr Apricot

    I keep sending this to [email protected] but don't look like they are doing much :(

    [​IMG]

    -Sasha
     
  15. archon10

    archon10 BANNED BANNED

    Joined:
    Oct 10, 2011
    Messages:
    1,181
    Likes Received:
    1,668
    Any email from a supposed American company that uses the word "kindly" at the beginning of a sentence is a big red flag. Just like the "sir" posts on here.

    I won't do any work for anyone who uses "Kindly" at the beginning of a sentence and claims his name is "Jim" or "Adam" or "Nancy Johnson." You know you're dealing with one of "those" fraud SEO.
     
    • Thanks Thanks x 1
  16. abhi007

    abhi007 Jr. VIP Jr. VIP

    Joined:
    Aug 31, 2010
    Messages:
    5,800
    Likes Received:
    3,919
    Location:
    Theatre of dreams :)
    Sasha im guessing these email must be ending up in your junk folder right?
     
  17. TayaX

    TayaX Jr. VIP Jr. VIP

    Joined:
    Dec 13, 2010
    Messages:
    3,521
    Likes Received:
    1,960
    Occupation:
    Skype : TayaxBHW
    Location:
    France
    Home Page:
    I just wonder what's the en point of all this.

    The phisher get acces to the paypal account and ...
    1/ send money to his own account -> hes fucked
    2/ Send money to a stealth account -> account blocked sooner or later
    3/ Send money to his account through a stealth account -> fucked too.
     
  18. Hawkster

    Hawkster Jr. VIP Jr. VIP

    Joined:
    Jun 22, 2013
    Messages:
    3,504
    Likes Received:
    3,721
    Gender:
    Male
    Occupation:
    Listen to everyone - Follow no-one
    Location:
    UK
    Home Page:
    I get the same kind of emails. They are triers that's for sure.
     
  19. sashablack

    sashablack Elite Member

    Joined:
    Jan 8, 2010
    Messages:
    3,697
    Likes Received:
    2,067
    Gender:
    Male
    Actually these email are going straight to my inbox!

    -Sasha
     
  20. Red Giant

    Red Giant Jr. VIP Jr. VIP

    Joined:
    Nov 1, 2013
    Messages:
    1,571
    Likes Received:
    260
    Thanks for the share. yeah i receive the same kind of emails.
    but i didn't take any furture steps.