CyberSec Tips: Email – Spam – Phishing – example 1
Phishing is pretty constant these days. One of the tips to identify phishing messages is if you don’t have an account at that particular bank. Unfortunately, a lot of people who are online have accounts with Paypal, so Paypal is becoming a favourite with phishers. You’ll probably get a message something like this:
Subject: Your account access has been limited
From: firstname.lastname@example.org <email@example.com>
(You might think twice if you have an account with Paypal in the United States, but this domain is in the UK.)
> PayPal is constantly working to ensure security by regularly screening the
>accounts in our system. We recently reviewed your account, and we need more
>information to help us provide you with secure service. Until we can
> collect this information, your access to sensitive account features will be
> limited. We would like to restore your access as soon as possible, and we
> apologize for the inconvenience.
> Why is my account access limited?
> Your account access has been limited for the following reason(s):
> November 27, 2013: We would like to ensure that your account was not
> accessed by an unauthorized third party. Because protecting the security of
> your account is our primary concern, we have limited access to sensitive
> PayPal account features. We understand that this may be an inconvenience but
> please understand that this temporary limitation is for your protection.
> Case ID Number: PP-197-849-152
>You must click the link below and enter your password for email on the following page to review your account. hxxp://dponsk.ru/wp-admins/.pay/
> Please visit the hxxp://dponsk.ru/wp-admins/.pay Resolution Center and
> complete the Steps to Remove Limitations.
Sounds official, right? But notice that the URLs given have nothing to do with Paypal. Also notice, given the .ru domain, that they are in Russia. Don’t click on those links. Neither Paypal of anybody else is going to send you these type of messages these days.