• Open Menu Close Menu
  • Apple
  • Shopping Bag
  • Apple
  • Mac
  • iPad
  • iPhone
  • Watch
  • TV
  • Music
  • Support
  • Search apple.com
  • Shopping Bag

Lists

Open Menu Close Menu
  • Terms and Conditions
  • Lists hosted on this site
  • Email the Postmaster
  • Tips for posting to public mailing lists
Re: PayPal hacking
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: PayPal hacking

  • Subject: Re: PayPal hacking
  • From: "Randy B. Singer" <email@hidden>
  • Date: Sun, 27 Jul 2003 22:17:33 -0700
Richard Huggins <email@hidden> said:

>> From: List Mom - Janice Kempf <email@hidden>
>
>> Three weeks ago I had the misfortune of having my PayPal account get hacked
>> and I was nailed for $4000. Got my money back, but I am still "closing
>> doors" (like making sure cookies, and cache, are dumped every day), (but
>> that's another story for another day).
>
>Hey, Janice, how about today? I think any tips we can pass along to our
>members from people who've learned something the hard way (sorry!) is a
>valuable thing. I'd like to hear about what you learned about how this
>happened...

I can tell you that just yesterday I got a very official looking HTML
e-mail message that said that it was from PayPal. The beginning of the
URL in the "from" portion of the e-mail was actually the PayPal URL, but
it was a long address, and if you know something about HTML you know that
the address really goes somewhere else, not to the PayPal site. (The
second part of the URL overrides the first part of the URL.)

The HTML e-mail message said something about updating my account with
PayPal. It asked for all sorts of information, including my credit card
number. Once you fill in the form and click on the submit button, you
actually are sent to the front door of the PayPal site, but your
information is sent elsewhere.

This is a very slick scam. Let me tell you this. Don't EVER give out
your personal information (like your credit card number or a bank account
number) in response to an e-mail message of ANY kind. If you think that
such a message may be legitimate, contact the company yourself to ask
them if it is.

It is very easy to spoof the front door of a legitimate online service
and use it to get your sensitive private information. Once you've done
it, you may not even know what you have done until you find that your
credit card or your bank account has been used by someone else.


Randy B. Singer
Co-Author of: The Macintosh Bible (4th, 5th and 6th editions)

How To Deal With Common Macintosh OS X Jaguar Problems
http://www.macattorney.com/tutorial.html
_______________________________________________
augd mailing list | email@hidden
Help/Unsubscribe/Archives: http://www.lists.apple.com/mailman/listinfo/augd
Do not post admin requests to the list. They will be ignored.
  • Prev by Date: Safari enhancement for low vision users
  • Next by Date: Re: This Week's MUG News - 7/27
  • Previous by thread: Safari enhancement for low vision users
  • Next by thread: ## SCAM ALERT: "PayPal" Scammer
  • Index(es):
    • Date
    • Thread