An
Email with the Subject "Phishing: PayPal Center Security Advisory! - Limited account access" was
received in one of Scamdex's honeypot email accounts on Thu, 21 Feb 2008 02:29:54 -0800
and has been classified as a Generic Scam Email.
The sender shows as "PayPal Inc"<paypal-inc@service.com>.
The email address was probably spoofed. Do not reply to or contact any persons or organizations referenced in
this email, or follow any URLs as you may expose yourself to scammers and, at the very least, you will be
added to their email address lists for spam purposes.
Scam TagCloud
assistanceforeignpaypalpaypal.combanklog inip addressthird partypasswordwinaccountnotificationserviceaccessverifysecuresentmailconfidentialautomaticallyreference will security(ssl)(the highest level commer...http://www.paypal.com/sec...for assistance
NO CHART DATA - EMAIL HAS NOT YET BEEN ANALYSED
Scam Email Headers
This a (redacted) view of the raw email headers of this scam email.
Personally Identifiable Information (PII) has been suppressed, but can be
supplied as received to appropriate investigating or law enforcement agencies on request.
EEEEEstdClass Object
(
[return-path:] =>
[envelope-to:] => scams@scamdex.com
[delivery-date:] => Thu, 21 Feb 2008 02:29:54 -0800
[received:] => Array
(
[0] => from mn-69-68-121-135.sta.embarqhsd.net ([69.68.121.135] helo=stone.SCMN.LOCAL)by bartok.o7e.net with esmtp (Exim 4.68)(envelope-from )id 1JS8gO-0002Zt-C9for scams@scamdex.com; Thu, 21 Feb 2008 02:29:54 -0800
[1] => from User ([209.181.4.201]) by stone.SCMN.LOCAL with Microsoft SMTPSVC(6.0.3790.1830); Thu, 21 Feb 2008 04:56:06 -0600
)
[reply-to:] =>
[from:] => "PayPal Inc"
[subject:] => Phishing: PayPal Center Security Advisory! - Limited account access
[date:] => Thu, 21 Feb 2008 03:29:34 -0700
[mime-version:] => 1.0
[content-type:] => text/html;charset="Windows-1251"
[content-transfer-encoding:] => 7bit
[x-priority:] => 3
[x-msmail-priority:] => Normal
[x-mailer:] => Array
(
[0] => Microsoft Outlook Express 6.00.2600.0000
[1] =>
)
[x-mimeole:] => Produced By Microsoft MimeOLE V6.00.2600.0000
[bcc:] =>
[x-originalarrivaltime:] => 21 Feb 2008 10:56:06.0203 (UTC) FILETIME=[5B9DE0B0:01C87478]
[x-tm-as-product-ver:] => SMEX-7.0.0.1345-5.0.1023-15742.003
[x-tm-as-result:] => No-9999.999000-0.000000-31
[x-spam-status:] => No, score=17.1
[x-spam-score:] => 171
[x-spam-bar:] => +++++++++++++++++
[x-spam-flag:] => NO
[message-id:] =>
[x-scamdex-scores:] => S:65 P:73 A:66 L:58 E:66 G:57
[x-scamdex-classtype:] => P
[x-scamdex-classscore:] => 73
[x-scamdex-totscore:] => 385
[x-scamdex-kw:] => IP address,\%,access,account,assistance,bank,employ,foreign,inc.,log in,notification,password,paypal,sent,third party,user,verify
[x-scamdex-dir:] => P
[x-scamdex-id:] => P1204769291.M141781P20228V
[x-scamdex-copyright:] => This Email is Copyright Scamdex.com 2009, Reproduction Prohibited
)
Domain Names used for collecting scam email ("Honeypot email accounts") have been obscured and replaced with the token 'HUN1P0T'
Community Action - SPAM/non-Scam Report
Occasionally, incorrectly categorized emails get into the Scamdex Scam Email Database and need to be removed. If this
email has Personally Identifiable Information (PII), or is, in your opinion, from a bona-fide entity, let us know.
Scamdex will, as soon as is practicable, take-down any emails that in our opinion should not
be in our database. Note that ALL emails in the Scamdex Scam Email Database were received as Unsolicited Commercial Email, aka UCE or
SPAM, via unpublished 'Honeypot' email addresses.
Security Center Advisory!
We recently noticed one or more attempts to log in to your PayPal account from a
foreign IP address and we have reasons to believe that your account was hijacked
by a third party without your authorization. If you recently accessed your account while traveling, the unusual log in
attempts
may have been initiated by you.
If you are the rightful holder of the account you must click the link below and then complete all steps from
the following page as we try to verify your identity.
Click here to verify your
account
If you choose to ignore our request,
your account will remain limited until you verify your information at your bank.
Thank you for using PayPal! The PayPal Team
Please do not reply to this e-mail. Mail sent to this
address cannot be answered. For assistance,
log in to your PayPal account and choose the "Help" link in the footer of any page.
To receive email notifications in plain text instead of HTML, update your preferences
here.
PayPal Email ID PP697
Protect Your Account Info
Make sure you never provide your password to fraudulent persons.
PayPal
automatically encrypts your confidential information using the Secure Sockets Layer protocol (SSL) with an encryption
key length of 128-bits (the highest level commercially available).
PayPal will never ask you to enter your
password in an email.
For more information on protecting yourself from fraud, please review our Security Tips at
http://www.paypal.com/securitytips
Protect Your Password
You should never give your PayPal password to anyone, including
PayPal employees.
