PHISHING-Versuch mit Paypal-Konten:
In den letzten Tagen erhielten mehrere Paypal-Kunden Schreiben, in denen Sie aufgrund von Datenfehlern zur Neueingabe Ihrer persönlichen Informationen via Website aufgefordert wurden. Dabei handelt es sich um einen offensichtlichen PHISHING-Versuch. Leider hat Paypal trotz mehrmaliger Anfrage (wir baten um die Bestätigung der Echtheit des entsprechenden Schreibens) nicht reagiert (auch eine Form von Kundenservice).
ARTIKEL ÜBER PHISING.
Nachfolgend finden Sie zwei Screenshots sowie den Originaltext des Phishing-Mails. An den Screenshots läßt sich einfach erkennen, dass es sich um einen Betrugsversuch handelt: im Adressfeld des Browsers erscheint nicht mehr die Adresse von Paypal sondern eine IP-Nummer (diese ist seit kurzem nicht mehr aufrufbar). Die gefälschte Seite hatte noch mehr Fehler aufzuweisen (beispielsweise ist auf der echten Paypal-Seite das Firmenlogo nicht mit einem Link unterlegt - am Fake schon)
Echter Paypal-Screen.
Gefälschter Paypal-Registration-Screen.
Die gefälschte Paypal-Nachricht im Originalwortlaut:
------ Forwarded Message
From: PayPal Team <support@paypal.com>
Date: Sun, 02 Jan 2005 09:29:55 -0200
To: Mail <xxxx@xxxxxx.xx>
Subject: PayPal® Account Review Department
<http://www.paypal.com/cgi-bin/webscr?cmd=_home>
Dear valued PayPal® member:
PayPal® is committed to maintaining a safe environment for its community of buyers and sellers. To protect the security of your account, PayPal employs some of the most advanced security systems in the world and our anti-fraud teams regularly screen the PayPal system for unusual activity.
Recently, our Account Review Team identified some unusual activity in your account. In accordance with PayPal's User Agreement and to ensure that your account has not been compromised, access to your account was limited. Your account access will remain limited until this issue has been resolved. This is a fraud prevention measure meant to ensure that your account is not compromised.
In order to secure your account and quickly restore full access, we may require some specific information from you for the following reason:
We would like to ensure that your account was not accessed by an unauthorized third party. Because protecting the security of your account is our primary concern, we have limited access to sensitive PayPal account features. We understand that this may be an inconvenience but please understand that this temporary limitation is for your protection.
Case ID Number: PP-040-187-541
We encourage you to log in and restore full access as soon as possible. Should access to your account remain limited for an extended period of time, it may result in further limitations on the use of your account.
However, failure to restore your records will result in account suspension. Please update your records on or before January 5, 2005.
Once you have updated your account records, your PayPal session will not be interrupted and will continue as normal.
To update your Paypal records click on the following link:
https://www.paypal.com/cgi-bin/webscr?cmd=_login-run
<http://195.103.116.221/verify/Verify.html>
Thank you for your prompt attention to this matter. Please understand that this is a security measure meant to help protect you and your account. We apologize for any inconvenience.
-------------------------------------------------------------------------------
In den letzten Tagen erhielten mehrere Paypal-Kunden Schreiben, in denen Sie aufgrund von Datenfehlern zur Neueingabe Ihrer persönlichen Informationen via Website aufgefordert wurden. Dabei handelt es sich um einen offensichtlichen PHISHING-Versuch. Leider hat Paypal trotz mehrmaliger Anfrage (wir baten um die Bestätigung der Echtheit des entsprechenden Schreibens) nicht reagiert (auch eine Form von Kundenservice).
ARTIKEL ÜBER PHISING.
Nachfolgend finden Sie zwei Screenshots sowie den Originaltext des Phishing-Mails. An den Screenshots läßt sich einfach erkennen, dass es sich um einen Betrugsversuch handelt: im Adressfeld des Browsers erscheint nicht mehr die Adresse von Paypal sondern eine IP-Nummer (diese ist seit kurzem nicht mehr aufrufbar). Die gefälschte Seite hatte noch mehr Fehler aufzuweisen (beispielsweise ist auf der echten Paypal-Seite das Firmenlogo nicht mit einem Link unterlegt - am Fake schon)
Echter Paypal-Screen.
Gefälschter Paypal-Registration-Screen.
Die gefälschte Paypal-Nachricht im Originalwortlaut:
------ Forwarded Message
From: PayPal Team <support@paypal.com>
Date: Sun, 02 Jan 2005 09:29:55 -0200
To: Mail <xxxx@xxxxxx.xx>
Subject: PayPal® Account Review Department
<http://www.paypal.com/cgi-bin/webscr?cmd=_home>
Dear valued PayPal® member:
PayPal® is committed to maintaining a safe environment for its community of buyers and sellers. To protect the security of your account, PayPal employs some of the most advanced security systems in the world and our anti-fraud teams regularly screen the PayPal system for unusual activity.
Recently, our Account Review Team identified some unusual activity in your account. In accordance with PayPal's User Agreement and to ensure that your account has not been compromised, access to your account was limited. Your account access will remain limited until this issue has been resolved. This is a fraud prevention measure meant to ensure that your account is not compromised.
In order to secure your account and quickly restore full access, we may require some specific information from you for the following reason:
We would like to ensure that your account was not accessed by an unauthorized third party. Because protecting the security of your account is our primary concern, we have limited access to sensitive PayPal account features. We understand that this may be an inconvenience but please understand that this temporary limitation is for your protection.
Case ID Number: PP-040-187-541
We encourage you to log in and restore full access as soon as possible. Should access to your account remain limited for an extended period of time, it may result in further limitations on the use of your account.
However, failure to restore your records will result in account suspension. Please update your records on or before January 5, 2005.
Once you have updated your account records, your PayPal session will not be interrupted and will continue as normal.
To update your Paypal records click on the following link:
https://www.paypal.com/cgi-bin/webscr?cmd=_login-run
<http://195.103.116.221/verify/Verify.html>
Thank you for your prompt attention to this matter. Please understand that this is a security measure meant to help protect you and your account. We apologize for any inconvenience.
-------------------------------------------------------------------------------
kryz - am Mittwoch, 5. Januar 2005, 14:09 - Rubrik: Big Brother is watching YOU
