Results 1 to 8 of 8

Thread: another attempt through Paypal

  1. #1
    Senior Member IcSilk's Avatar
    Join Date
    Aug 2001
    Posts
    296

    another attempt through Paypal

    I got an email today, supposedly from Paypal, saying there's been some suspicious activity on my account and that one of the cards associated with my account has been identified as lost or stolen.

    The email looked really authentic - it even had sidebars about protecting yourself from fraud - in very small print - but the button to click to go to paypal and confirm your account info. was HUGE!!

    On closer examination the email came from "paypal@service.com" rather than "service@paypal.com" and the URL that the link led to is http://biomeditech.com.tw/manual/.cg...msg/login.html

    interestingly enough, when I clipped the URL down to just the ...biomeditech.com.tw it goes to an open webmail login page.
    Add /manual/ on the end and it goes to an apache server portal page.

    All this being said - what are the initial steps one would take to start researching and tracing the origins of scams like these??

    Thanks to all respondants, Be careful everyone ...


    Blessings,
    F.
    "In most gardens they make the beds too soft - so that the flowers are always asleep" - Tiger Lily

  2. #2
    Senior Member IcSilk's Avatar
    Join Date
    Aug 2001
    Posts
    296

    1440 minutes??

    I missed that timeframe

    if anyones interested, here's a screenshot of that email (though I've just noticed that the site the above link referred to has been abolished).
    "In most gardens they make the beds too soft - so that the flowers are always asleep" - Tiger Lily

  3. #3
    Master-Jedi-Pimps0r & Moderator thehorse13's Avatar
    Join Date
    Dec 2002
    Location
    Washington D.C. area
    Posts
    2,885
    Submit the site to PIRT.

    Here is the link.
    http://www.castlecops.com/pirt


    They will research it and post the results for you as they do here.
    http://www.castlecops.com/modules.ph...Phish&fp=phish

    --TH13
    Our scars have the power to remind us that our past was real. -- Hannibal Lecter.
    Talent is God given. Be humble. Fame is man-given. Be grateful. Conceit is self-given. Be careful. -- John Wooden

  4. #4
    Senior Member
    Join Date
    Jan 2003
    Posts
    3,915
    Hey Hey,

    I've been following interesting ones that I recieve here -- http://www.computerdefense.org/?cat=31

    You can also watch SpamMailBag.com for intersting emails (I have started to remove ones related to child porn however... it just doesn't seem right to leave them up) but everything else is uncensored.

    Peace,
    HT

  5. #5
    Master-Jedi-Pimps0r & Moderator thehorse13's Avatar
    Join Date
    Dec 2002
    Location
    Washington D.C. area
    Posts
    2,885
    The PayPal phish you just posted on that site has been around for a little while. In fact, I received one only the guy wasn't named Bill Chang and instead of a cell phone, it was a digital camera. Sneaky indead, AND 24 hours later I received a follow up phish that made it appear that the transaction actually went through. Keep an eye out for that one.

    --TH13
    Our scars have the power to remind us that our past was real. -- Hannibal Lecter.
    Talent is God given. Be humble. Fame is man-given. Be grateful. Conceit is self-given. Be careful. -- John Wooden

  6. #6
    I got one to from paypal the funny thing about it was that it came to my gmail account which isn't the one I used for paypal so it immediately through a red flag when I seen that.

  7. #7
    Senior Member IcSilk's Avatar
    Join Date
    Aug 2001
    Posts
    296
    Haha, Price

    That's the other thing that I forgot to mention in the original post ... It didn't even come to the email address that is associated with my real paypal account.
    "In most gardens they make the beds too soft - so that the flowers are always asleep" - Tiger Lily

  8. #8
    Senior Member phernandez's Avatar
    Join Date
    Aug 2003
    Location
    NYC
    Posts
    246
    I should know better than to post to an old thread, I know...

    I also got one of those authentic-looking emails this week at the address I use to conduct PayPal-related business. Sent it over to abuse@paypal.com but I'll definitely use the link provided by thehorse13.

    Thanks for pointing it out.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •