HardOCP News
[H] News
- Joined
- Dec 31, 1969
- Messages
- 0
Any of you guys received one of these yet?
![[H]ard|Forum](/styles/hardforum/xenforo/logo_dark.png){kind=logo}
New PayPal Phishing Scheme
- Thread starter HardOCP News
- Start date
cabanaboy38
Limp Gawd
- Joined
- Nov 10, 2005
- Messages
- 226
I never click on an email link to paypal even if I know it's legit>
TwistedAegis
[H]F Junkie
- Joined
- Oct 7, 2009
- Messages
- 8,958
Pretty good phishing e-mail, but still...phishing e-mails make the news?
Sp33dFr33k
2[H]4U
- Joined
- Apr 20, 2002
- Messages
- 2,481
Haven't seen one yet. Anyone who clicks on a link AND enters their credentials really deserves whatever is at the other end. Someday people may get a little smarter about online safety.
HardOCP News
[H] News
- Joined
- Dec 31, 1969
- Messages
- 0
So, because .0001% of our readers don't find this "newsworthy" we shouldn't post news items that can affect not only our readers but the vast majority of their non-tech savvy friends and family?
Plus, this is convenient for those of us with spouses and family members that don't believe anything we say unless we provide a link. Send a link, our job is done...don't get phished grandma!
True for you and I. It's all them friends / family members / old people we know that fall for this crap and then call us for tech support.
Cerulean
[H]F Junkie
- Joined
- Jul 27, 2006
- Messages
- 9,476
Was about to say that this one is free of errors but then...
I have never in my life seen a professional grade-A text, especially from a company as large as PayPal, written that way. To me, that indicates there's something fishy about this e-mail.
I never click login links in e-mails.
I have never in my life seen a professional grade-A text, especially from a company as large as PayPal, written that way. To me, that indicates there's something fishy about this e-mail.
I never click login links in e-mails.
Brent_Justice
Moderator
- Joined
- Apr 17, 2000
- Messages
- 17,755
Just never ever click through to any URL from an email.
Go to the site yourself, manually, and log in legit.
Go to the site yourself, manually, and log in legit.
ol1bit
[H]ard|Gawd
- Joined
- Jan 15, 2007
- Messages
- 1,246
A buddy of mine got nabbed by ADOT Photo Radar phishing email. They sent out fake emails for a UPS delivery, when you clicked on it, it registered on a web site that identifies you and your ticket.
Can't even trust the government anymore.
Can't even trust the government anymore.
tonyftw
[H]ard|Gawd
- Joined
- Mar 21, 2013
- Messages
- 1,817
This. Friend of mines had to learn the hard way.
- Joined
- Feb 3, 2004
- Messages
- 25,317
I got it early today....luckily I had time to fill out all the info before I went to work.....I narrowly escaped getting my account locked...I'm glad they are looking out for me..makes me feel very safe...
I always do this. I pretty much never trust anything that is asking for me to login and verify anything, unless its needing email verification for an account I just setup.
DejaWiz
Fully [H]
- Joined
- Apr 15, 2005
- Messages
- 21,824
Thank you for posting this, Steve. I've forwarded it on to my friends and family all around the world. Fraud / Identity Theft sucks and hopefully having this knowledge will help them to protect themselves a little more.
mynamehere
[H]ard|Gawd
- Joined
- Jun 30, 2007
- Messages
- 1,763
People need to learn to distrust links in any email of this type, even if it seems completely legit. All it takes is 1 changed character in the URL to screw you. Always go to a company's main page and check things out. Quite often there will be a notice if something's up.
Basically this, I mean honestly these things have hardly changed in 15 years. If you fall for it at this point, frankly you are just stupid and I have zero sympathy. My tech illiterate grandmother has seen enough if these at this point to know better. This isn't 1999 any longer, there is no excuse for being that tech illiterate any longer. On that note, no sympathy for people who over pay for items in a store as well. Same concept, if you aren't price shopping at this point, you get what you deserve. We need to stop coddling the terminally stupid.
Since I run Linux I can pretty much ignore this sort of thing. Recently I have had similar messages from banks I have no connection with, Amazon, and even the US IRS, which brought a laugh since it over 12 years since I was last there, and I live and worked in the UK for 45 years!
The trick with these messages is to first look at what type of file the attachment is. It is always a zip. A reputable firm will never send you a zip. They always send in PDF, TXT, RTF,or WORD.
Since I am running Linux I use Ark to open the zip, and it is nearly always an .exe, or a ..scr.
The other thing to do is to look at the header. The sender may look correct, but if you can open the source of the message and look down several lines you can find the real sender which is always bogus.
The best rule I would suggest is to use Mozilla Thunderbird and learn to use the spam filters. This is what I do and after a couple of attempts these messages just stop appearing.
The next best is to just never open an attachment or click on a link if you are not sure.
The trick with these messages is to first look at what type of file the attachment is. It is always a zip. A reputable firm will never send you a zip. They always send in PDF, TXT, RTF,or WORD.
Since I am running Linux I use Ark to open the zip, and it is nearly always an .exe, or a ..scr.
The other thing to do is to look at the header. The sender may look correct, but if you can open the source of the message and look down several lines you can find the real sender which is always bogus.
The best rule I would suggest is to use Mozilla Thunderbird and learn to use the spam filters. This is what I do and after a couple of attempts these messages just stop appearing.
The next best is to just never open an attachment or click on a link if you are not sure.
I guess I meant to say the company's fraud or support address
So much overkill..
Step 1 - Ignore email go Directly to site.
Step 2 - Check your messages, if nothing there then forward said email to their @phishing email or delete.
Done.
Didn't know Linux could stop Phishing scams. Now I know, and knowing is half the battle.
Outamyhead
Supreme [H]ardness
- Joined
- Jan 3, 2008
- Messages
- 4,263
"Hey your account has had some unusual activity, could you give us more information about yourself to confirm the unusual activity".....Delete.
TwistedAegis
[H]F Junkie
- Joined
- Oct 7, 2009
- Messages
- 8,958
Sorry, that came out super douchey. I guess what I meant to say is, with so many of these damn phishing e-mails coming every day, wondered why/how this one floated to the top.
As for getting to the assholes who send these...much easier said than done.