PAYPAL (Phishing emails)

Good Morning all,

Just received this email about my paypal account being messed up... BEWARE OF THIS!!!!!!!!! I DON'T HAVE A PAYPAL ACCOUNT!!!!

Please Restore Your Accont Access?
From: PayPal Security Notice ([email protected])
You may not know this sender.Mark as safe|Mark as junk
Sent: Mon 8/24/09 3:57 AM
To:




Information Regarding Your account:
Dear PayPal Member:

Attention! Your PayPal account has been limited!

As part of our security measures, we regularly screen activity in the PayPal system.We recently contacted you after noticing an issue on your account.We requested information from you for the following reason:

Our system detected unusual charges to a credit card linked to your PayPal account.

Reference Number: PP-259-187-991

This is the Last reminder to log in to PayPal as soon as possible. Once you log in, you will be provided with steps to restore your account access.

Once you log in, you will be provided with steps to restore your account access. We appreciate your understanding as we work to ensure account safety.

Click here to activate your account




We thank you for your prompt attention to this matter. Please understand that this is a security measure intended to help protect you and your account. We apologise for any inconvenience..

Sincerely,
PayPal Account Review Department

--------------------------------------------------------------------------------


Copyright ? 1999-2009 PayPal. All rights reserved. PayPal Ltd. PayPal FSA Register Number: 226056.


PayPal Email ID PP059
Protect Your Account Info
Make sure you never provide your password to fraudulent websites.

To safely and securely access the PayPal website or your account, open a new web browser (e.g. Internet Explorer or Netscape) and type in the PayPal login page (http://paypal.com/) to be sure you are on the real PayPal site.

For more information on protecting yourself from fraud, please review our Security Tips at https://www.paypal.com/us/securitytips


Protect Your Password
You should never give your PayPal password to anyone.

Hi Blondie, thanks for posting, it is a fairly standard phishing email that is attempting to gather your pay pal details, you can report these to paypal directly for the fastest response

More information on these types of emails and other ways to protect oneself can be found here:
https://www.paypal.com/us/cgi-bin/websc ... er-outside

I get a lot of these paypal scam emails and i do have a paypal account. As long as they appear in my catcher account i know it's a scam. They allso come in the French language, i will post both English and French versions. I can't read French so that one could be completely different.

From:
"PayPal" <[email protected]> [Add]
To:
undisclosed-recipients: ;
Date:
Fri, 20 Nov 2009 12:00 PM (4 hours 45 mins ago)
We have reason to believe that your account was accessed by a third party. We have limited access to sensitive PayPal account features in case your account has been accessed by an unauthorized third party. We understand that having limited access can be an inconvenience, but protecting your account is our primary concern. MailScanner ha rilevato un possibile tentativo di frode proveniente da "www.bett88.com" https://www.paypal.com. This is a reminder to log in to PayPal as soon as possible. Sincerely, PayPal Account Review Department Copyright © 1999-2009 PayPal. All rights reserved.
--
Il messaggio e' stato analizzato alla ricerca di virus o
contenuti pericolosi da MailScanner, ed e'
risultato non infetto.

From:
paypal@2009, [email protected] [Add]
To:
xxxxxxxxxxxxx [Add]
Date:
Mon, 16 Nov 2009 5:30 PM (3 days 23 hours ago)
Le chiffrage militaire de catégorie est seulement le début

Chez PayPal, nous voulons augmenter votre niveau de sécurité et de confort avec chaque transaction. De nos politiques de protection d'acheteur et de vendeur à nos systèmes de vérification et de réputation, nous aiderons à vous maintenir sûr.



Nous avons récemment noté qu'une ou plusieurs tentatives de noter en votre compte de PayPal d'un IP address étranger et nous avons des raisons de croire que votre compte a pu avoir été détourné par un tiers sans votre autorisation.

Si vous accédiez récemment à votre compte tout en voyageant, l'ouverture peu commune dans les tentatives a pu avoir été lancée par toi. Cependant, si vous êtes le titulaire légitime du compte, clic sur le lien ci-dessous à noter en votre compte au cours de la période mentionnée ci-dessus.


Aller mettre à jour votre compte



Si vous choisissez d'ignorer notre demande, vous ne nous laissez aucun choix mais pour suspendre temporaly votre compte.

Nous demandons que vous accordez au moins 72 heures pour que le cas soit étudié et nous recommandons vivement de vérifier votre compte dans ce temps.

Si vous receviez cette notification et vous n'êtes pas le support autorisé de compte, veuillez se rendre compte qu'il est dans la violation de la politique de PayPal pour se représenter en tant qu'autre utilisateur de PayPal. Une telle action peut également être dans la violation du droit local, national, et/ou international. PayPal en est commis à l'application de loi d'aide avec s'enquiert connexe aux tentatives de détourner l'information personnelle avec l'intention pour commettre la fraude ou le vol. Des informations seront fournies sur demande des agences d'application de loi pour s'assurer que des malfaiteurs sont poursuivis jusqu'au plus plein degré de la loi.

Département de revue de compte de PayPal
PayPal, une compagnie eBay

eta: Even if this got in my regular email account i would know it's a scam

If you have a Fastmail account then you could receive a warning within the email like this:

We have reason to believe that your account was accessed by a third party. We have limited access to sensitive PayPal account features in case your account has been accessed by an unauthorized third party. We understand that having limited access can be an inconvenience, but protecting your account is our primary concern. FastMail.FM WARNING: URL text and host don't match, possible phishing attempt. URL disabled. Original URL='http://www.kamje.or.kr/notice/pub/management/financial/logon.html?cmd=_login-run'. Original text='https://www.paypal.com'. For more information on phishing click here.. This is a reminder to log in to PayPal as soon as possible. Sincerely, PayPal Account Review Department Copyright © 1999-2009 PayPal. All rights reserved.

I'ts an extra service some email providers have. Do take these warnings serious!
Note that the paypal url in this email is a redirect to the scammers website.

Thesame letter but with different urls:

We have reason

From:
"PayPal" <[email protected]> [Add]
To:

Date:
Mon, 23 Nov 2009 6:38 PM (2 hours 15 mins ago)


Return-Path: <[email protected]>
Received: from compute2.internal (compute2.internal [10.202.2.42])
by store66m.internal (Cyrus v2.3.15-fmsvn20771-f904b41c) with LMTPA;
Mon, 23 Nov 2009 12:50:50 -0500
X-Sieve: CMU Sieve 2.3
X-Spam-charsets: plain='Windows-1250', html='Windows-1250'
X-Resolved-to:
X-Delivered-to:
X-Mail-from: [email protected]
Received: from mx4.messagingengine.com ([10.202.2.203])
by compute2.internal (LMTPProxy); Mon, 23 Nov 2009 12:50:50 -0500
Received: from s1.coollogin.com (s1.coollogin.com [209.250.83.45])
(using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))
(No client certificate requested)
by mx4.messagingengine.com (Postfix) with ESMTPS id 172DB30F
for <>; Mon, 23 Nov 2009 12:50:50 -0500 (EST)
Received: (qmail 7577 invoked from network); 23 Nov 2009 12:38:17 -0500
Received: from smtpar.defiancemetal.com (HELO User) (12.234.195.126)
by s1.coollogin.com with SMTP; 23 Nov 2009 12:38:16 -0500
From: "PayPal"<[email protected]>
Subject: We have reason
Date: Mon, 23 Nov 2009 11:38:16 -0600
MIME-Version: 1.0
Content-Type: multipart/alternative;
boundary="----=_NextPart_000_000C_01C2AA85.6AF92E06"
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2800.1081
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1081
X-Truedomain-DKIM: None
X-Truedomain: Neutral
Message-ID: <[email protected]>

We have reason to believe that your account was accessed by a third party. We have limited access to sensitive PayPal account features in case your account has been accessed by an unauthorized third party. We understand that having limited access can be an inconvenience, but protecting your account is our primary concern. FastMail.FM WARNING: URL text and host don't match, possible phishing attempt. URL disabled. Original URL='http://www.bett88.com/support.html'. Original text='https://www.paypal.com'. For more information on phishing click here.. This is a reminder to log in to PayPal as soon as possible. Sincerely, PayPal Account Review Department Copyright © 1999-2009 PayPal. All rights reserved.

I´ve also resived the mail, that I´ve to confirm my details off paipal account.

The danger is, to believe the message and to click the link in the mail.
Then they have your details and kann shopping with your money.


Read the mail here: viewtopic.php?f=26&t=8088

I get those too, the real PayPal says to forward them to [email protected]