Has someone offered you a huge sum of money or a valuable consignment? It's a 419 or advance fee fraud - find out how they work, and what to do to be safe.
#2414 by ybo Mon Jan 14, 2008 10:18 pm
Here is the header from the email:
==============================
Received: (qmail 6785 invoked from network); 15 Jan 2008 01:32:56 -0000
Received: from unknown (HELO pre-smtp35-01.prod.mesa1.secureserver.net) ([64.202.166.92])
(envelope-sender <paypal>)
by smtp25-02.prod.mesa1.secureserver.net (qmail-1.03) with SMTP
for <yves>; 15 Jan 2008 01:32:56 -0000
Received: (qmail 13246 invoked from network); 15 Jan 2008 01:32:56 -0000
Received: from smtp20.orange.fr ([193.252.22.31])
(envelope-sender <paypal>)
by pre-smtp35-01.prod.mesa1.secureserver.net (qmail-ldap-1.03) with SMTP
for <yves>; 15 Jan 2008 01:32:45 -0000
Received: from User (s15269429.domainepardefaut.fr [87.106.165.106])
by mwinf2024.orange.fr (SMTP Server) with ESMTP id 1AB0F1C0008A;
Tue, 15 Jan 2008 02:32:25 +0100 (CET)
X-ME-UUID: [email protected]
From: "[email protected]" <paypal>
Subject: Please Restore Your Account Access
Date: Tue, 15 Jan 2008 02:32:41 +0100
MIME-Version: 1.0
Content-Type: text/html;
charset="Windows-1251"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2600.0000
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
Message-Id: <20080115013225>
To: undisclosed-recipients:;
X-Nonspam: Statistical 58%

===================================
Here is the email
===================================




Protect Your Account Info
Make sure you never provide your password to fraudulent websites.

PayPal will never ask you to enter your password in an email.

For more information on protecting yourself from fraud, please review our Security Tips at https://www.paypal.com/us/securitytips


Protect Your Password
You should never give your PayPal password to anyone, including PayPal employees.




Update Your Information

It has came to our attention that your PayPal billing information are out of date. This require you to update your billing information as soon as possible.
This billing update is also a new PayPal security statement which goes according to the established norms on our terms of service (TOS) to reduce the instance of fraud on our website.

Please update your records . A failure to update your records may result on a suspension of your account.

To update your PayPal records click on the following link:
log in to your PayPal account and choose the Help link located in the top right corner of any PayPal page.

PayPal Email ID PP295




No virus found in this incoming message.
Checked by AVG Free Edition.
Version: 7.5.516 / Virus Database: 269.19.2/1223 - Release Date: 1/13/2008 8:23 PM
Advertisement

#2416 by Tom Sanders Tue Jan 15, 2008 1:21 am
I get these all of the time, along with account warnings from banks and EBay, even though I don't have accounts at any of those.

The goal is to trick somebody who really does have a PayPal account into following that link and knowingly (or unknowingly in the event of keyloggers) provide personal information which will allow the scammers to access accounts or credit card information.

The best thing to do with these is just delete them from your email account and never follow a link if you don't know who it belongs to.

I notice that you use AVG, which is a good thing. If you don't already, I would suggest using FireFox as your browser and installing the NetCraft tool bar. This will notify you if you are going into a suspicious site.

#2418 by Chris Martins Tue Jan 15, 2008 12:16 pm
I'm not sure how much good it does, but you can also report phishing emails to sites like:

[email protected]

[email protected]

1. Create a new mail to [email protected].
2. Drag and drop the phishing email from your inbox onto this new email message
* In Netscape drop it on the 'attachment' area
3. Do not use "forward" if you can help it, as this approach loses information and requires more manual processing. The exception is when you use the Web interface to outlook: in that case forward is the only solution.


If you do forward phishing email, make sure you include the header.

"All that is necessary for the triumph of evil is that good men do nothing." -Edmund Burke
#2463 by ybo Wed Jan 23, 2008 7:06 pm
I just received one that was looking really 'real'...
I wonder how many people get caught with that type of scam? Particularly older people who are not used to that type of agression.
I will follow your sugestions
Thank you guys for that great work
yves

#2464 by Ralph Thu Jan 24, 2008 12:06 am
Actually lots do,

Often you can report the email to the company being represented and they will act to have the phishing site taken down.

I did this just yesterday as it turns out for a well known bank in Australia, ANZ Bank, the trick is to ensure that you go to the real website and you will in most cases find a report a scam link where you can forward the email.

No bank or paypal account will ask for those details or report the "urgent notification" via email.

Who is online

Users browsing this forum: Majestic-12 [Bot] and 27 guests