Wednesday, August 29, 2018

PayPal Phishing Email - [ New Report Reminder ] Statement update login issue Wednesday, 29 August, 2018

For the record, this PayPal phishing email attempt that is recently going around and made it through span filters. What to do?  Report them, goto bottom of page for instructions.


From : PayPal Support <noreply....@lompatguagebutaslimengkelanjing.com>

Subject[ New Report Reminder ] Statement update login issue Wednesday, 29 August, 2018

 Attachment: #Summary.doc

WORD DOCUMENT

Your account access is limited

Dear Customer

We noticed some unsual activity on your PayPal account and are concerned about potential unauthorized account access.

What's going on?
We want to help ensure PayPal is a secure place to do business. We noticed some changes in your account that require further verification. During this time, you may not have access to certain account activities. Please review the Account impact section for more information about what you can and cannot do.

Impact on account: Medium

Account impact

 Receive money or payments
 Pay using PayPal
 Refund money to customers
 Send money or payments
 Withdraw money from PayPal

What to do next

Please log in to your PayPal account and complete the steps to confirm your identity and recent account activity. To help protect your account, access will remain limited until you complete the necessary steps.

SPAM LINK --> Login To PayPal

Thank you for your understanding and cooperation.

Sincerely

PayPal

Malicious Link

Login To PayPal
Points to http://go2l.ink/1tFW
http://urlexpander.net/ expands to https://paypal-restore.ca
Interestingly the stacked final URL is valid

Very convincing phishing site

















How to tell this is a Phishing email ?


  1. Check email address in full, if it's not from originating company then it's phishing.
  2. Hover over all links in email,check if it from source website address.
  3. The best way is to look at message source, see below.

How to examine Email Message Source ?

Now lets look at message source
  1. Outlook.com->Actions->View Message Source. 
  2. Gmail.com->More (down arrow to top right)->Show original.
Check for suspicious links, anything that does not originate from apple.com.


Report Phishing Email (not as Spam)

  1. Outlook.com->Junk (at Top)->Phishing Scam
  2. Gmail.com->More (downarrow to top right)->Report Phishing 

Report Phishing URLs at Google now 

If you have recievied this email take further action now by click these links

  1. https://www.google.com/safebrowsing/report_phish/


Report phishing at Microsoft and government agencies

  1. http://www.microsoft.com/security/online-privacy/phishing-faq.aspx

Report phishing emails to Apple 

Forward the email to abuse@icloud.com. This provides Apple's legal department and law enforcement with useful information to help prevent future phishing emails.


Report phishing emails to PayPal

“Phishing” is an illegal attempt to "fish" for your private, sensitive data. One of the most common phishing scams involves sending an email that fraudulently claims to be from a well-known company (like PayPal). If you believe you've received a phishing email, follow these steps right away:
  1. Forward the entire email to spoof@paypal.com.
  2. Do not alter the subject line or forward the message as an attachment.
  3. Delete the suspicious email from your inbox.

Posted by metadataconsulting (profile) at 12:00 AM

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)