triviageek

Tonight's phisher is a little smarter; but not a LOT smarter. The REAL address in the url isn't a number this time; they ARE using a domain address. It's just the WRONG DOMAIN ADDRESS - www.paypal-acounts.com for this phisher.

The domain address of paypal is paypal.com (making their web address www.paypal.com).

Paypal's domain is NOT paypal-accounts.com as the phisher would have you believe (ie www.paypal-accounts.com is NOT the web address of paypal; it's the web address of a phisher).

However, in this case the phisher made one mistake. In the raw HTML of the message, I found this line:

Return-Path: <julie@nocturne.dreaming.org>

Hmmmmm, did someone named julie send me this phishing message? I do see the domain dreaming.org within the message below. Uhhhh maybe I'll forward the phisher's email to abuse@dreaming.org and see if I can stir up some trouble for "julie".

Subject: Notification of Limited PayPal Account Access
From: "support@paypal.com"
Date: Mon, 15 Aug 2005 13:37:21 -0400 (EDT)
X-Virus-Scanned: by amavisd-new at dreaming.org
X-UID: 16

PayPal
Protect Your Account Info

Make sure you never provide your password to fraudulent websites.

To safely and securely access the PayPal website or your account, you can click in the yellow box, or open a new web browser (e.g. Internet Explorer or Netscape) and type in the PayPal URL.

PayPal will never ask you to enter your password in an email.

For more information on protecting yourself from fraud, please review our Security Tips at https://www.paypal.com/row/securitytips

Protect Your Password
You should never give your PayPal password to anyone, including PayPal employees.

Notification of Limited Account Access

During our regularly scheduled account maintenance and verification procedures, we have detected a slight error in your billing information.

This might be due to either of the following reasons:

1. A recent change in your personal information ( i.e.change of address).
2. Submiting invalid information during the initial sign up process.
3. An inability to accurately verify your selected option of payment due to an internal error within our processors.

For your protection, we have limited access to your account until you will update your account with the correct information, and a new password.
Click here to update your account

You can also fill in the verification information by logging into your PayPal account at http://www.paypal.com/row/. Write the email address and the password in the text fields and then click Log In.

Thank you for using PayPal!
The PayPal Team

--
Please do not reply to this email. This mailbox is not monitored and you will not receive a response. For assistance, log in to your PayPal account and choose the Help link located in the top right corner of any PayPal page.

To receive email notifications in plain text instead of HTML, update your preferences here.

PayPal Email ID PP059