Debunking email hoaxes and exposing Internet scams since 2003!

Hoax-Slayer Logo Hoax-Slayer Logo

DividerDivider
Home    About    New Articles    RSS Feed    Subscriptions    Contact
DividerDivider


Site Navigation










Issue 122 - January 2012 - Page 5

PayPal 'Your Credit Card Information Has Changed' Phishing Scam

Issue 122 Start Menu

Previous Article            Next Article

Outline
Email purporting to be from PayPal claims that the recipient's credit card has been removed from the PayPal account and that he or she should follow a link to rectify the issue.



Brief Analysis
The email is not from PayPal and the recipient's credit card has not been removed from the account as claimed. The message is a phishing scam designed to steal PayPal account information and credit card details.

Bookmark and Share
Detailed analysis and references below example.

Enter your email address to subscribe to the Hoax-Slayer Newsletter:






Last updated: 19th December 2011
First published: 19th December 2011
Article written by Brett M. Christensen
About Brett Christensen and Hoax-Slayer


Example
Subject: Your credit card information has been changed!

PayPal Logo

Your credit card information has been changed.

On December 13, 2011, your credit card has been removed from your PayPal account.

You are receiving this email notification because this email address is listed as the administrative contact email for your PayPal account. If you belive this is an error, click the link below, log in to your PayPal account and follow the instructions.

[Link removed]

Please do not reply to this email. This mailbox is not monitored and you will not receive a response.

Sincerely,
PayPal

----------------------------------------------------------------

PayPal Email ID PP8116




Detailed Analysis
According to this email, which purports to be from online payment service PayPal and sports a seemingly legitimate PayPal logo, the recipient's credit card has been removed from his or her PayPal account. The email claims that if recipients believe that the credit card removal is an error, they can click a link in the message and follow instructions to rectify the problem.

However, the email is not from PayPal. The claim that credit card details have been removed from the account is a lie designed to fool users into divulging information to cybercriminals.

People who fall for the ruse and follow the link will be taken to a fake "PayPal" website that has been carefully designed to mirror the genuine PayPal website. The casual observer might find it difficult to notice any difference between the fake webpage and the real PayPal site. If the victim goes ahead and enters his or her login details on the fake webpage, the following web form will be displayed. The form asks for the victim's name, address, contact details, and driver's licence details as well as his or her credit card information:
Paypal Phishing Scam Form 1
 Paypal Phishing Scam Form 2

All information submitted on the bogus website - including the user's PayPal login details - can be collected by the criminals operating this scam campaign. Once they have collected this information from their victim, the criminals can then use it to login to his or her real PayPal account, steal more personal information and make fraudulent PayPal transactions. They can also use the stolen personal and credit card information to commit credit card fraud and identity theft.

Another recent and very similar campaign claims that users must verify their details to lift limitations imposed on the account. Because it conducts its operations primarily online and via email, PayPal has become a regular and ongoing target for phishing scammers. Be cautious of any message purporting to be from PayPal that asks you to follow a link to supply personal or financial information. Always login to PayPal by entering the PayPal address into your web browser. PayPal has published information on its website that helps users identify phishing scams.

Bookmark and Share

References
PayPal 'Verify to Resolve Account Limitations' Phishing Scam
Paypal 'Strange IP from a Different Location' Phishing Scam
Phishing Guide



Previous Article            Next Article

Issue 122 Start Menu

Pages in this month's issue:
  1. Cancer Info From Johns Hopkins Hoax Email
  2. AT&T Phishing Scam
  3. Jon Bon Jovi is NOT Dead
  4. World of Warcraft Phishing Scam
  5. PayPal 'Your Credit Card Information Has Changed' Phishing Scam
  6. Hoax - Julia Gillard Admits Being in A Lesbian Relationship
  7. Facebook Survey Scam - Get a Costco Gift Card for Free
  8. Facebook Survey Scam - Eat for Free at CheeseCake Factory
  9. Hoax Chain Letter - The Vengeful Ghost of Carmen Winstead
  10. Craigslist Account Phishing Scam
  11. JB Hi-Fi Facebook Survey Scam
  12. Decorative Magnets on Refrigerators - Cancer Warning Hoax
  13. ABSA Phishing Scam Emails
  14. Delta Air Lines Passenger Itinerary Receipt Malware Emails
  15. American Airlines Flight Ticket Order Malware Emails
  16. Hotel Key Card Security Risk Hoax
  17. Bogus MADD Petition
  18. Hoax: HIV Infected Blood In Pepsi
  19. Hoax - Cell Phone Numbers Go Public This Month
  20. Video Of Plane With Failed Landing Gear Landing on a Small Truck
  21. Free Facebook Credits Survey Scam
  22. Chicken Jerky Dog Treats Warning
  23. Bogus Warning - 'BBQ Enthusiast' Avatar on Cafe World is a Trojan Horse Virus