Very Elaborate PayPal EBay Identity Theft Scam

Posted: December 31, 2007 in Identity theft, Phishing spoofing, Uncategorized
Tags: , , , , , ,

In their unrelenting pursuit to rob us of our identity and financial assets, the scammers are going to greater and greater lengths. This one almost had us fooled. Besides the one spelling mistake and the fact that PayPal never addresses their correspondence to “PayPal Member”; they always refer to their customers on a personal first and last name basis, there wasn’t any other obvious indications that this was a scheme.

However, with a little programming slight of hand, scammers have in the past produced what is known as a scripting bypass bug. This method allows identity thieves to capture key strokes as users enter information into log in forms of the actual sites.

Again, the same rules always apply; never click on a link furnished in an email, type the URL of the site you know is the right one, directly into your browser. All reputable web sites will never ask for peronal information online.

From: Paypal Service
Date: December 29, 2007 6:58:24 PM EST
To: “XXXXXXX.XX\r”
Subject: This email confirms that you have sent an eBay payment of $76.06 USD

Dear PayPal Member,

This email confirms that you have sent an eBay patment of $76.06 USD to eayauctions@yahoo.com for an eBay item using PayPal.

Payment Details

 Transaction ID: 0TG36051LF699554N

Item Price: $76.06 USD
Total: $76.06 USD
Order Description: Digimax 134
Item/Product
Number: (4198125020)

Note: If you haven`t authorized this charge ,click the link below to dispute transaction and get full refund

Dispute transaction (Encrypted Link)

*SSL connection: PayPal automatically encrypts your confidential information in transit from your computer to ours using the Secure Sockets Layer protocol (SSL) with an encryption
key length of 128-bits (the highest level commercially available)

Thank you for using PayPal!
The PayPal Team

Your monthly account statement is available anytime; just log in to your account at https://www.paypal.com/us/HISTORY. To correct any errors, please contact us through our Help Center at https://www.paypal.com/us/HELP.

Please do not reply to this email. This mailbox is not monitored and you will not receive a response. For assistance, log in to your PayPal account and choose the Help link located in the top right corner of any PayPal page.

To receive email notifications in plain text instead of HTML, update your preferences here.

PayPal Email ID PP844

Comments
  1. I think my Paypal account got hijacked one time. Fortunately they couldn’t hack into my email account so I quickly changed my info.

  2. Debi says:

    I also received this email:

    Dear PayPal Member,

    This email confirms that you have sent an eBay patment of $76.06 USD to eayauctions@yahoo.com for an eBay item using PayPal.

    ——————————————————————————–

    Payment Details

    Transaction ID: 0TG36051LF699554N

    Item Price: $76.06 USD
    Total: $76.06 USD
    Order Description: Digimax 134
    Item/Product
    Number: (4198125020)

    Note: If you haven`t authorized this charge ,click the link below to dispute transaction and get full refund

    ——————————————————————————–

    Dispute transaction (Encrypted Link)

    *SSL connection: PayPal automatically encrypts your confidential information in transit from your computer to ours using the Secure Sockets Layer protocol (SSL) with an encryption
    key length of 128-bits (the highest level commercially available)

    ——————————————————————————–

    Thank you for using PayPal!
    The PayPal Team

    Your monthly account statement is available anytime; just log in to your account at https://www.paypal.com/us/HISTORY. To correct any errors, please contact us through our Help Center at https://www.paypal.com/us/HELP.

    Please do not reply to this email. This mailbox is not monitored and you will not receive a response. For assistance, log in to your PayPal account and choose the Help link located in the top right corner of any PayPal page.

    To receive email notifications in plain text instead of HTML, update your preferences here.

    ——————————————————————————–

    PayPal Email ID PP843

  3. gariell says:

    Debi

    Thanks for posting the version of this fraud that you received. I am sure it will save many from falling victim to identity theft.

    Gariell

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s