Fake Email from PayPal Cloned Sites

Do you enter your paypal emailid and passwords without looking at the URL in your browser? If you are kindly stop doing the same. Here is a very strong reason why I say this:

1. Today I received an email which you can very well see below.

2. It says that your pay pal account has been de-activated and kindly click to activate. When I click on the link it opened a page which looked like below.

3. I thank God that I am more of a net savy and I cared to Check the url of the website opened. It was not https://paypal.com but http://following.ns8-wistee.fr/www.paypal.com/cgi-bin/us/security/update-paypal/service-peyment/update/login.aspx/

4. I again thank God that I was able to see that before I entered my real email id’s. However I decided to proceed with the site, and I entered some random email id and password. You can see the that above.

5. After I entered my email Id and Password I can see the following screen which is exactly what you see at the paypal site.

6. Further this site took me to a page where it asked me to enter all my personal details including Credit Card details. The page was again a ditto of the original paypal page. However I somehow missed to take a screen shot of the same. When I went back to the site to take a screen shot, it showed me the page below.

7. The chaps are I suppose smart enough to recognise if the page is being loaded twice from the same IP Address, as they don’t want users to visit there site the second time. May be one of you can try the same URL from your home.

8. Finally Just be careful while you get any such email from any one.

Here are in short a few key points to check when you get such emails:

  • Always check from whom the email has been sent. In my case it was from PaypalSecurity <Paypal@online.net>, which is obviously an invalid email id.
  • Next always check to whom has the mail been sent out to. In my case it was undisclosed-recipients , which means it has been sent to a mass of people with all email id’s in BCC. Paypal will never ever send out a mail to you with your email id in BCC.
  • Finally check for the URL in your browser. All pages from paypal are https , hence check for the same. Plus the opening page should be always https://paypal.com.
  • Also, never ever visit an e-commerce website through a link in your email etc. Always type the address in the address bar manually to be at a safer side.

Kindly spread the word before others get trapped in the loop. I have already reported this to the paypal authorities.

Play safe, its internet and your email id’s are just floating every where like your mobile numbers. 🙁