|
Date Reported: 24th March 2010  |
Risk Level: MEDIUM-HIGH |
|
| |
 |
 |
| |
Email Subject: |
[G-] Notification of Limited Account Access |
|
Apparent Sender: |
PayPal |
|
Return Address: |
Not found |
|
| Email Format: |
HTML |
| |
URL of Web Content: |
http://www.planoviavel.pt/includes/js/jscalendar-1
.0/www.paypal.com/www.paypal.com/paypal/cgi-bin/we
bscrcmd=_login-run/webscrcmd=_account-run/updates-
paypal/confirm-paypal/
|
|
Anchor text of URLs: |
1) PayPal accounts, we observed activity that
we would like to
further verify. For this
reason, limitations have been placed on
your
account until your will review your
registered intormation.
In order to resolve
the account limitations, complete our online
form by clicking on the following link :
Log
into your PayPal account |
|
Location: |
Location not available |
| |
Scam number: |
8889-115544-346022 |
| |
Comments: |
- Email asks you to confirm/update/verify your account data at PayPal by visiting the given link. You will be taken to a spoof website where your details will be captured for the phishers.
- PayPal never send their users emails requesting personal details in this way.
|
| |
|
|
|
 |
| |
|
| |
Return-path: Envelope-to:
spoof@millersmiles.co.uk Delivery-date: Wed,
24 Mar 2010 16:10:41 -0200 Received: from
59-120-33-90.hinet-ip.hinet.net
([59.120.33.90] helo=dns.ivytech.com.tw) by
server5.webserver25.net with esmtps
(TLSv1:AES256-SHA:256) (Exim 4.69)
(envelope-from ) id 1NuV2N-0005J3-UQ for
spoof@millersmiles.co.uk; Wed, 24 Mar 2010
16:10:41 -0200 Received: from User
(host81-149-233-238.in-addr.btopenworld.com
[81.149.233.238]) (Authenticated sender:
amy) by dns.ivytech.com...
|
|
Click for full size image |
| |
| Website: |
|
|
| |
|
Click for full size image |
