This alert may not be shared outside your organization, Do Not Repost or send, place on other websites, List servers, or send to others via email, including other associations or parties. Members and Law enforcement use only. Contact us for any permissions. To do otherwise will result in the loss of membership.
Complete Story
12/23/2019
PayPal Phishing Scam Tries to Steal Much More than Login Credentials
The State of Security
A newly discovered PayPal phishing scam attempts to steal much more than just a user’s login credentials for the online payments service.
Slovakian security firm ESET observed that the scam began by targeting users with an attack email warning them of unusual activity involving their account. The email urged recipients to click on an embedded link so as to secure their account and protect their financial information.
In instances of compliance, the scam redirected users to one of several websites that used PayPal-themed branding to reiterate the farce of unusual account activity. To its credit, these websites used clever names and valid SSL certificates to add a sense of legitimacy. Yet they nevertheless gave themselves away as fake by their use of non-PayPal domains, substandard English and CAPTCHAs.
Alerts
The FRPA alert system distinguishes us from other groups by gathering and providing information to law enforcement, retailers AND financial institutions.
more informationResources
Your electronic library to help in fighting financial fraud for all of our partners.
more information