Anyone use Pay Pal for online purchases? If so, beware of my recent experience. I receive a e-mail asking me to confirm a recent Pay Pal authorized payment. If not authorized if asked me to double click a link. This took me to a screen that looks identical to Pay Pals web site. It asked me to log into my account. The log in screen asked for my credit card number, expiration date, PIN, name, mailing address, etc. I was suspicious and called Pay Pal. They reminded me that they never ask for this type information. My account was flagged for "Limited Account Access". This required me to take several steps including changing my password, security questions, etc. In all this experience what scares me is the ability of someone to duplicate Pay Pals official web site. Plus how did they know I even have a Pay Pal account associated with my e-mail address? Just be aware that there are some very smart but dishonest individuals lurking to take your money.
Phishing You are correct! This was my first experience but very scary! Just glad I woke up before it cost me dearly. "Phishing is an e-mail fraud method in which the perpetrator sends out legitimate-looking email in an attempt to gather personal and financial information from recipients. Typically, the messages appear to come from well known and trustworthy Web sites. Web sites that are frequently spoofed by phishers include PayPal, eBay, MSN, Yahoo, BestBuy, and America Online. A phishing expedition, like the fishing expedition it's named for, is a speculative venture: the phisher puts the lure hoping to fool at least a few of the prey that encounter the bait. Phishers use a number of different social engineering and e-mail spoofing ploys to try to trick their victims. In one fairly typical case before the Federal Trade Commission (FTC), a 17-year-old male sent out messages purporting to be from America Online that said there had been a billing problem with recipients' AOL accounts. The perpetrator's e-mail used AOL logos and contained legitimate links. If recipients clicked on the "AOL Billing Center" link, however, they were taken to a spoofed AOL Web page that asked for personal information, including credit card numbers, personal identification numbers (PINs), social security numbers, banking numbers, and passwords. This information was used for identity theft. The FTC warns users to be suspicious of any official-looking e-mail message that asks for updates on personal or financial information and urges recipients to go directly to the organization's Web site to find out whether the request is legitimate. If you suspect you have been phished, forward the e-mail to uce@ftc.gov or call the FTC help line, 1-877-FTC-HELP. "
They don't know that. They send that same e-mail to thousands of e-mail addresses, hoping to catch a few people who haven't heard of the scam. Phishing attacks can involve banks, e-bay, pay-pal, etc. Never click a lick in that kind of e-mail, just use the delete key. If you are not sure whether it is legitimate, roll your cursor over the link and see what appears at the bottom of your screen. The fake sites will have something between the "www" and the name of the site, or will be completely different. Here is an example: http://www.mandtbank.com/online-account-update/Update.aspx DO NOT CLICK ON THAT LINK. JUST ROLL YOUR CURSOR OVER IT. You will see the actual url is nothing like what it appears to be in the link. That address is not even in the United States. Another thing: Never "unsubscribe" from something you have not personally subscribed to! A lot of spam messages contain what looks like an "unsubscribe" option, and if you click on it, all you are doing is telling them that your e-mail address is a valid address, so they can send you more spam and sell your e-mail as a verified address so you will get even more spam.
I've been on the internet since we had just BBS for enjoyment!! I don't have a Pay-Pal account I don't use my credit card online and I don't need too. Neither do you if your smart. If you intentionally stick your foot in a bear trap, you need to be prepared for the "SNAP" when things like this happen.
I haven't had an on line ID theft issue related to financial/creditcards in 10 years and I spend between $5K and $10k a month for on line purchases. My ID theft issues, besides the Johnston County mess, were all tied to stolen laptops (at least twice, and not my laptop).
I've always wondered about people who fear using their credit card on line, but have no problem handing it to a waitress who leaves the area with it.
as have i. and ebay since 1998. hell, three years ago when my employer wanted a check to use to set up direct deposit, i had to order some because i never use them anymore. i make 99% of my payments online, on the phone, or with my debit card. but the phishing scams are out there. and they catch people every day....
I have had that happen to me before. I contacted paypal and they told me that when paypal sends you an email, they always will address you by your name, as oppossed to the scammer that sends you an email that says "dear paypal user". So all real emails from paypal, or ebay will address you by name. You can forward all suspicious emails to paypal at spoof@paypal.com, or if it is ebay it is spoof@ebay.com. They will then email you back & let you know if it was a scam or sent by them. But never respond in any way to the email. You can log into your account it see if there are any messages posted to your account too.
You just have to be smart. I got one from a stock site wanting me to update my SSN, etc. Might have been legit, but hey, if they really need it, they can call me.
