Sample of how this works.
You receive an email that looks like this...
----------------------------------------------------------
PayPal is committed to maintaining a safe environment for its community of customers. To protect the security of your account, PayPal employs some of the most advanced security systems in the world and our anti-fraud teams regularly screen the PayPal system for unusual activity.
We are contacting you to remind you that on 5 March 2005 our Account Review Team identified some unusual activity in your account. In accordance with PayPal's User Agreement and to ensure that your account has not been compromised, access to your account was limited. Your account access will remain limited until this issue has been resolved.
To secure your account and quickly restore full access, we may require some additional information from you for the following reason:
We have been notified that a card associated with your account has been reported as lost or stolen, or that there were additional problems with your card.
This process is mandatory, and if not completed within the nearest time your account or credit card may be subject for temporary suspension.
To securely confirm your PayPal information please click on the link bellow:
https://www.paypal.com/cgi-bin/webscr?cmd=_login-run
We encourage you to log in and perform the steps necessary to restore your account access as soon as possible. Allowing your account access to remain limited for an extended period of time may result in further limitations on the use of your account and possible account closure.
For more information about how to protect your account please visit PayPal Security Center. We apologize for any incovenience this may cause, and we apriciate your assistance in helping us to maintain the integrity of the entire PayPal system.
Thank you for using PayPal!
The PayPal Team
----------------------------------------------------------
Here is another version of the mail.. with another address..received few hours back. Do not enter any information in the site.. as it could still be active.
----------------------------------------------------------
Dear PayPal Member!
Attention! Your PayPal account has been violated!
Someone with ip address 149.225.126.87 tried to access your personal account!
Please click the link below and enter your account information to confirm that you are not currently away. You have 3 days to confirm account information or your account will be locked.
Click here to activate your account
You can also confirm your email address by logging into your PayPal account at
http://paypal.com/. Click on the "Confirm email" link in the Activate Account box and then enter this confirmation number: 1036-8535-4511-9500-3892
Thank you for using PayPal!
The PayPal Team
--------------------------------------------------------------------------------
Please do not reply to this e-mail. Mail sent to this address cannot be answered. For assistance, log in to your PayPal account and choose the "Help" link in the footer of any page.
You click on the link(Now you can safely click it as its already banned)
It takes you to a site that exactly looks like paypal.
That asks you to enter all your details including credit card details, paypal account details etc. It behaves exactly like paypal and at last shows up a page saying our servers are under maintenance, please try after some time.
Whats exactly happening.
The link that’s shown is different from the link to which user is taken on clicking it. Whole paypal site is simulated on the site very intelligently and your account details are stored in their databases which is used to lift money from your account.
Life of these sites are very small. Most of such sites are banned as soon as they are found involved in cyber crimes.
How to fight back.
I had another such mail, which had an interesting title. I clicked on the site, and it went to a yahoo site. As usual I entered my id and password. It showed me message asking me to try after some time. After verification I found that it was a fake site collecting my yahoo id and password. (That site got banned within 24 hours of my complaint to ban it) So be watchful about before giving out any of your passwords.
Lets make use of internet as a safe and effective means.
Here is a sites where you can lodge your complaints against cyber crimes http://www.ifccfbi.gov/index.asp
A nice detailed Indian article related to cyber crimes http://cybercrime.planetindia.net
3 comments:
Here was response from yahoo on my mail asking them to ban that website.
--------------
Hello,
Thank you for contacting Yahoo! Customer Care.
***************************************
Please do not reply to this email.
***************************************
Thank you for bringing this incident to our attention. Yahoo! will
investigate this report immediately and contact you if any additional
information is required. We appreciate your concern and thank you for
your report.
Your Yahoo! ID and password are your own confidential information. No
Yahoo! employee will ever ask you for your password or personal
information in an unsolicited phone call or email message. If you are
ever asked for your password in an unsolicited manner, or by someone
you
do not believe to be a representative of Yahoo!,
*do not* share your password with them.
If you replied to an email asking for your password or entered your
Yahoo! ID and password on a phishing site and found that you could not
log into your Yahoo! account, please contact the Account Security help
pages by clicking the link below:
http://help.yahoo.com/help/us/security/index.html
To report spam or unsolicited email from a Yahoo! account, please send
to:
abuse@yahoo.com
If you are reporting a non-yahoo website or email address we will be
unable to take action as Yahoo! has no control over activities outside
its service. You will want to send the report of abuse to the company
targeted in the email (Citibank, US Bank, etc). They will be in a
better position to take appropriate action.
You can send such reports to:
"abuse@example.com"
Replace "example.com" with the domain of the company that is being
targeted.
For more helpful information on password scams as well as information
on
how to protect your password, visit:
http://security.yahoo.com/password_scams.html
and
http://antispam.yahoo.com/faqs#a13
For additional information on ways to protect your information online,
please visit the Yahoo! Security Center at:
http://security.yahoo.com
We appreciate your concern and thank you for reporting this incident to
Yahoo!.
Thank you again for contacting Yahoo! Customer Care.
Regards,
Yahoo! Customer Care
For assistance with all Yahoo! services, please visit:
http://help.yahoo.com/
New and Improved Yahoo! Mail - better than ever!
Original Message Follows:
------------------------
Thank you for this information. I just received such a "pay pal" email soon as I changed my ISP yesterday (1/28/06). I just didn't feel it looked right, so did not reply. Keep up your good work!
NMS
Hi,
I have a serious problem with Yahoo email id & Gmail ID.
The problem is i had created an email ID. Since i was using it for a long time more than 4 years. I had stored all my family photo's & most of my friends email iD's in. It's been hacked by somebody, that person is sending all nonsense messages through it to all my contacts. Pls do let me know how do i close the account.
I don't want to lodge complaint with cyber crime as long precess & i have to spend time wiht them as & when required.
Pls tell me what's the next option to close that id. I tried with all probablities of password.
Pls help me.
Post a Comment