[legionare]

Being the savvy computer user I supposedly am, I looked at the email header first when I got a "Paypal account notice" email.

Return-Path: <aw-confirm@ebay.com>
X-Flags: 1001
Received: (qmail invoked by alias); 11 Jan 2007 01:51:09 -0000
Received: from pconnect.infinityhost.com (HELO ebay.com) [66.242.24.128]
by mx0.gmx.net (mx086) with SMTP; 11 Jan 2007 02:51:09 +0100
Received: (qmail 10401 invoked by alias); 11 Jan 2007 01:32:12 -0000
Date: 11 Jan 2007 01:32:12 -0000
Message-ID: <20070111013212.10368.qmail@ebay.com>
From: "service@paypal.com" <service@paypal.com>
To:
Content-Type: text/html;

Somehow, I couldn't determine the authenticity of the email, so I clicked on the the Paypal login link in the text below.

" We recently received a report of unauthorized credit card use associated with this account. As a precaution, we have limited access to your PayPal account in order to protect against future unauthorized transactions.

Case ID Number: PP-711-611-856

In accordance with PayPal's User Agreement, your account access will remain limited until the issue has been resolved. Unfortunately, if access to your account remains limited for an extended period of time, it may result in further limitations or eventual account closure. We encourage you to follow our verification procedure as soon as possible to help avoid this.

Click here to login and restore your account access"

These bastards are obviously banking on people using a very short URL field bar.
[url]www.paypal.com.711611.20inyw.com/Welcome/cmd-confirm/login.php?login&login_email=xxx@xxx.com&re f=pp_n_jan10
Do NOT click on the phishing URL above!

I saw the full address, but still managed to type in my Paypal password and click Submit, before the little lightbulb came on in my head.

[zro]

Why the **** are you posting that link?

[IceEnclosure]

I got a paypal email just like that the other day, I reported it. Looked pretty nice tho

[TheoCryst]

Wow, that's a pretty convincing one. The links on the page even point to the real Paypal site.

[shifuimam]

Originally Posted by legionare 

I saw the full address, but still managed to type in my Paypal password and click Submit, before the little lightbulb came on in my head.

I am assuming here that you IMMEDIATELY reported to PayPal that your account was compromised?

[legionare]

I logged into paypal with the compromised password and changed it It should be good enough, no?

[macintologist]

Originally Posted by legionare 

I logged into paypal with the compromised password and changed it It should be good enough, no?

That's what I did for my mom who was suckered into a phishing email. I told her to change the password right away and it has worked so far.

[Zeeb]

Just to be safe, I would actually close your paypal account and open a new one--but I'm paranoid. I've been getting those phishing emails myself. I got a similar bank of america notice and followed the link. All the links off the phishing page connected to the real boa site. Since I didn't have a boa account, I knew it was fake.

[Mastrap]

At this day and age, how can anybody still fall for one of these? Seriously.

[legionare]

Hey! I am an email header reading computer geek! I had managed to remain unblemished by this infamy for years, until today!

[IceEnclosure]

Funny, I didn't even read the header information. I just knew my account was in good shape. Fired up Safari, followed my own link to paypal, and yep: all was good, no real notices from paypal.

[macfantn]

call paypal, they will lock your account down and send you a snail mail form with new password i did the same thing earlier this year

[euchomai]

Originally Posted by IceEnclosure 

Funny, I didn't even read the header information. I just knew my account was in good shape. Fired up Safari, followed my own link to paypal, and yep: all was good, no real notices from paypal.

That is what I did too. I just typed in the URL and checked out my account without clicking through the email. Solves all the problems.

[Lava Lamp Freak]

I get an e-mail like that every few days.

PayPal recommends you never click a link to their site in an e-mail. Always type it in your browser so you know its the real site.

[JMan09]

I get these emails too, but I dont have an e-bay or paypal account. So I just delete them.

[MOTHERWELL]

time for a bigger computer screen.

[turtle777]

I don't get these mails. SpamAssassin takes care of them all.

-t

[Blasphemy]

I never click links in emails for logging in to sites.

Always use a known good bookmark or carefully-typed url.