|
Date Reported: 21st October 2009  |
Risk Level: MEDIUM-HIGH |
|
| |
 |
 |
| |
Email Subject: |
Update your PayPal billing information |
|
Apparent Sender: |
Service |
|
Return Address: |
Not found |
|
| Email Format: |
HTML |
| |
URL of Web Content: |
http://213.201.106.228/zen-cart/images/cgi--bin/ww
w.paypal.co.uk/cgi-binwebscrcmd=_login-run&dispatc
h=/5885d80a13c0db1ffc45dc241d84e9538c532da79baccf7
c26f850d773643350/confirmation/webscr.php?cmd=_log
in-run&dispatchX85d80a13c0db1f1ff80d546411d7f8a835
0c132
|
|
Anchor text of URLs: |
1) URL link is in form of image, 2)
http://www.paypal.co.uk/uk
, 3) log in |
|
Location: |
Location not available |
| |
Scam number: |
5103-70815-270612 |
| |
Comments: |
- Email asks you to confirm/update/verify your account data at Service by visiting the given link. You will be taken to a spoof website where your details will be captured for the phishers.
- Service never send their users emails requesting personal details in this way.
- The anchor text appears as a legitimate URL, but don't be fooled - clicking on it will take you to a phishing site!
|
| |
|
|
|
 |
| |
|
| |
Return-path: Envelope-to:
spoof@millersmiles.co.uk Delivery-date: Thu,
22 Oct 2009 14:36:30 +0100 Received: from
mail.jaylees.com ([65.116.190.135]) by
server5.millersmiles.co.uk with esmtp (Exim
4.69) (envelope-from ) id
1N0xqA-0003Xf-J3 for
spoof@millersmiles.co.uk; Thu, 22 Oct 2009
14:36:30 +0100 Received: from User
([41.250.9.2]) by
mail.jaylees.com with Microsoft
SMTPSVC(6.0.3790.3959); Thu, 22 Oct 2009
06:42:22 -0700 Reply-To: From: "Service
Paypal" Subject: Update your PayPa...
|
|
Click for full size image |
| |
| Website: |
|
|
| |
|
Click for full size image |
