triviageek

This looks awfully real. Of course I KNOW that I don't have a paypal account.

And I also know how to look at the raw HTML within the email message to see the REAL address where they want me to enter my personal info.

Clicking on their link "http://www.paypal.com/cgi-bin/webscr?cmd=p/gen/accounts-outside" would REALLY take me to THEIR SITE at "http://221.148.206.119/usage/www.paypal.com/index.php" where the phishing crooks would no doubt use the info for neferius purposes. (A real business would NEVER, NEVER use the computer address of 221.148.206.119 in their URL -- they would ALWAYS use just a DOMAIN NAME instead.)

Subject: Notification of Limited Account Access (Routing Code: C840-L001-Q190-T1812)
From: "service@paypal.com"
Date: Sun, 14 Aug 2005 18:11:08 -0500
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report

Dear Sir,

PayPal is committed to maintaining a safe environment for its community of
buyers and sellers. To protect the security of your account, PayPal employs
some of the most advanced security systems in the world and our anti-fraud
teams regularly screen the PayPal system for unusual activity.

Recently, our Account Review Team identified some unusual activity in your
account. In accordance with PayPal's User Agreement and to ensure that your
account has not been compromised, access to your account was limited. Your
account access will remain limited until this issue has been resolved. This
is a fraud prevention measure meant to ensure that your account is not
compromised.

In order to secure your account and quickly restore full access, we may
require some specific information from you for the following reason:

We would like to ensure that your account was not accessed by an
unauthorized third party. Because protecting the security of your account
is our primary concern, we have limited access to sensitive PayPal account
features. We understand that this may be an inconvenience but please
understand that this temporary limitation is for your protection.

Case ID Number: PP-046-631-789
We encourage you to log in and restore full access as soon as possible.
Should access to your account remain limited for an extended period of
time, it may result in further limitations on the use of your account or
may result in eventual account closure.

Thank you for your prompt attention to this matter. Please understand that
this is a security measure meant to help protect you and your account. We
apologize for any inconvenience.


To keep your account active, click here:
http://www.paypal.com/cgi-bin/webscr?cmd=p/gen/accounts-outside


Sincerely,
PayPal Account Review Department

PayPal Email ID PP576

Here's one less crime victim. :)