PayPal New Security Message Phishing Scam
Email, purporting to be from PayPal, claims that you have a new security message waiting and are required to click a link to login to your account and read the message (Full commentary below
(Received February 2008)
Subject: New message
You Have 1 New Security Message !
Log In into your account to resolve the problem.
Click here to Log In
Thank you for using PayPal!
The PayPal Team.
PayPal Email ID: PP 3132
Many phishing scam emails are quite sophisticated and include graphics and formatting designed to make them seem more legitimate. This particular crop of scam messages is relatively plain and simple, but no less dangerous for unwary web users.
Don't get phished! Beware of emails that try to trick you into providing account details and other personal information
The emails simply state that the recipient has 1 security related message waiting. The recipient is instructed to click a link, ostensibly to retrieve the security message and "resolve the problem".
Like many other phishing attempts, this scam targets users of online payment company PayPal and is intended to steal account details and other personal information from victims. At the time of writing, the fake login page associated with this particular scam email was no longer online. However, phishing scam campaigns change quickly and links in similar scam emails may still be active.
Typically, those who click links in such emails will be taken to a bogus PayPal login webpage designed to closely resemble the genuine PayPal website. If a victim logs in to the bogus site, the criminals responsible for the scam can harvest his or her login credentials. They will then be able to access the victim's real PayPal account. The bogus website may also ask the victim to provide other personal information such as credit card numbers and bank account details, all of which can be retained by the scammers.
Given that PayPal is largely a web based organization, it does communicate with users via email. However, a genuine PayPal message will always address the user by name. Genuine web messages will never omit the user's name as is the case in this scam example. Nor will they include generic greetings such as "Dear account Holder" or Dear PayPal User". PayPal has extensive information
about phishing scams on its website.
The same "New Message" tactic has been used repeatedly and targets a number of financial entities including Lloyds TSB Bank:
You have 1 new Message.
Check out the latest updates about your e-banking service and take a look at these great offers from Lloyds TSB Bank plc.
Lloyds TSB Bank plc Internet Banking.
Be cautious of any message purporting to be from PayPal or another financial entity that claims that you have a security message waiting and instructs you to click a link to login to your account. To read more information about phishing scams, see:
Paypal Phishing Guide
Phishing Scams - Anti-Phishing Information
Last updated: 2nd March 2008
First published: 2nd March 2008
Write-up by Brett M. Christensen
Phishing Scam Targets PayPal Users
PayPal Billing Information Update Scam