Paypal 185 - Phishing

See also

Full description

Target:	Paypal
Date discovered:	23/10/2007

General The goal is to get the following information:
    • Credit card
    • Personal data
    • Paypal account

Phishing methods:
    • URL link
    • 'text' link

Email Details From: account@paypal.com
Subject: {Disarmed} Please update your records

Visible link: MailScanner has detected a possible fraud attempt from "61.16.248.106"...
Actual link: http://61.16.248.106/.../.www.paypal.com/cmd=_login-run.html
IP address: 61.16.248.106

The email is designed to avoid detection from Antispam and Antiphishing. The technique is:
• The Body of the email contains HTML content.

This screenshot is how the phishing email looks like:

Page Details Visible URL: http://61.16.248.106/.../.www.paypal.com/cmd=_login-run.html
Actual URL: http://61.16.248.106/.../.www.paypal.com/cmd=_login-run.html
IP address: 61.16.248.106

The phishing page will look like the following:

See a brief description here.

Inserted by Dominik Auerbach on Tue, 23 Oct 2007 19:47 (GMT+1)

« Back

Paypal 185 - Phishing

Security News