Email Scam Re PayPal

[William Kahn]

<p>Just a heads up for those using PayPal for photo sales transactions:</p>

<p>I just received an apparent scam email stating that my PayPal account has been compromised and asking me to download a report form. Riiight.<br>

The most obvious clue was that it was sent to my wife's email address, not to the one associated with my PayPal account.</p>

<p>I checked for previous posts on PayPal scams. Most of them are several years old...</p>

[goldbergbarry]

<p>This sort of thing happens all the time.</p>

[sarah_fox]

<p>If in doubt as to the legitimacy of an email, log on to the home page of the company's website by typing the address in the address bar and then following your usual logon procedure. If your account is really in trouble in any way, they'll certainly let you know about it the second you log in. But NEVER click that handy link in the email, even when it appears 99.9% certain it's a legitimate email.</p>

[William Kahn]

<p>Exactly, Sarah. But, then I never regard <em>any</em> email as 99.9% legitimate... </p>

[JDMvW]

<p>Yes, and official-<em>looking</em> emails telling you that you need to confirm your password, credit card numbers, etc.</p>

<p>Do ya' feel lucky? Do ya?</p>

 

[qalam]

If you use the Mac Mail app, you can move your cursor so that it hovers motionless over the link given in the email. DO

NOT CLICK, just hover, A text will appear that shows the actual destination url. This may work with other mail clients too.

 

Sometimes, an attachment is given that appears to be a .zip file. In fact, it is usually a disguised executable .exe file. On a

Windows machine if you try to open it, you could give complete control of your computer to a stranger.

[sarah_fox]

<p>Oh, and FAIW, I'm now getting more phone calls from the hackers at the friendly "Windows Support Department" than phishing emails. IMO the best way to handle those calls is to say, "Oh, yes, thank you so much for calling! I can really use your help, but right now there's something burning on the stove. Can you please hold for a second? I'll be right back." Then set down the phone and leave it.</p>

[William Kahn]

<p>Sarah, If they weren't waiting on the line for you they might be calling me, so thanks for that! ;-)</p>

[railphotog]

<p>I get these all the time, easy to spot. From "PPal" and other variations of the word. Windows 7 allows cursor hovering over the URL to display the correct phishing one. I copy the message source and add it, sending a message to <a href="mailto:spoof@paypal.com">spoof@paypal.com</a></p>

<p>I get similar ones from about every bank in North America, Europe and Britain too, all wanting me to verify my info. Banks do not send e-mails asking for such info. My bank doesn't even have my e-mail.</p>

<p> </p>

[chrisnielsen]

<p>If you use a password manager which IMHO everyone should use nowadays, then if you go to a site that *looks* authentic but is not, it will refuse to fill your password because the web address will be incorrect.</p>

[AJHingel]

<p>William, I just got an e-mail from PayPal, or so it seems which ask me to update my Mastercard info. The problem is that I don't use Mastercard on my PayPal account. Scam !</p>

[leicaglow]

Pp states they always address you in emails with first and last name.

Scammers usually do not.