Since last week, a spam mail in the name of Paypal, which phishing attacks on the access data of users, has been spreading. At first sight, a serious sender, the real name of the victim and an almost completely spelled cover letter ensure that many Internet users are now falling in and the cybercriminals betray your access data. This is reported by “Mimikama.at – Verein zum Aufklarung über Internetmissbrauch”
The e-mail carries as sender information only the alleged company name of "PayPal". Many users should not take the trouble to take a look at its properties and determine the actual sender. The subject is "Unauthorized account access". After addressing the recipient with the correct name, the potential victim is informed that there was an unauthorized login attempt for the account. The account has now been blocked.
Reading Tip: Detecting Phishing Mails - 6 Tips
It would require a data matching to confirm the identity. After completing this match, the account would be available as usual. However, the given link leads - as might be otherwise - to a fake website that is similar to Paypal. There, the victim should enter his access code and send it. The only thing that happens, however, is that you reveal your paypal login to the person responsible for the phishing attack. Just as bad: Further information like addresses and credit card data are requested.
Before you notice anything, irreparable damage can occur in the worst case. The least, which should come out, is a lot of back and forth with the Paypal support. Except for two commas, the text in the e-mail is flawless. But not everyone immediately. You can see a screenshot of the phishing mail on Mimikama.at
Lesetipp: The thirtiest spam mails
The current phishing mail offers a correct salutation and an almost error-free German. As a dubious one, you can identify them by examining the link to which you want to guide cybercriminals. In general, you should avoid clicking links in supposedly genuine emails from vendors such as Paypal, Amazon, Ebay and Co. Instead, go to the respective website manually and look into your user account. If something does not match it, you will find it there with no doubt.
No comments:
Post a Comment