MacHouse video tutorials for Mac search engine optimization Spam database Web Hosting providers Web Hosting review web hosting providers MacHouse Help

January 12, 2009

Active PayPal Phishing Website Possibly Hosted in Spain - Part 1

Filed under: Internet security — Administrator @ 5:55 am
Posted about 1 years and 7 months ago

anti spam






TOKYO (MacHouse) - An organized cyber criminal group circulated a spam message worldwide to scam PayPal users randomly. The title of the message is PayPal Member Notification. The spam message goes







PayPal is constantly working to ensure security by screening accounts daily in our system. We recently reviewed your account, and we need you to verify information to help us provide you with secure service. Until we can collect this information, your access to sensitive account features will be limited or terminated. We would like to restore your access as soon as possible, and we apologize for the inconvenience.

Why is my account access limited?

Your account access has been limited for the following reason(s):

August 20, 2008: We have reason to believe that your account was accessed by a third party. Because protecting the security of your account is our primary concern, we have placed limited access to sensitive PayPal account features. We understand that this may be an inconvenience but please understand that this temporary limitation is for your protection.







(See Screenshot 01.) Yeah, whatever, huh!? The link underlying Click here to Remove Account Limitations is http://62.14.230.86/netalerter/19483.paypal.com/
webscr_cmd_login-run.php?%3C-*-%3Eun8]Hm6i%20zd[S0,sz%3C-*-%3E. (A continuous URL is divided into two lines) Clicking on it, the mail recipient is forwarded to a PayPal phishing website.  





PayPal phishing 62.14.230.86
Screenshot 01 - Source:
MacHouse		   PayPal phishing 62.14.230.86
Screenshot 02 - Source:
62.14.230.86






Our preliminary analysis shows that the phishing website is hosted in Spain. Furthermore, the phishing message seems to originate from China. We will have a detailed report in several hours.






Click on the button to watch a short documentation video. VTC
Click on the button to watch more documentation videos. VTC





********** ********** ********** ********** ********** ********** ********** **********

MacHouse is not funded by tax payers' money. We have limited resources. We also need time to sleep and eat just as others. So we will not act as the International police to contact all victims of website abuse. All you have to do is to subscribe to spam messages and spam posts. If we can, why don't you?







Leave a Reply


You are prohibited from posting comments merely to advertise your website. Please read Rules and About This Blog at the top menu bar for more information.

Because of spam-comment criminals, we are forced to manually moderate every comment that you may post. Your comment will appear only after we review and then approve it. It will take us several hours at most to review it.

Please note that all one-sentence comments will be automatically rejected as an anti-spam measure.

Subscribe without commenting