be from 'PayPal', but *most* are amateurish ones which are easy to spot.
A few are more 'artful' - and very few get through the defences we've all
built up over years.
This is one such... it got auto-filtered into my PayPal email folder (and
that itself sets it apart as 'special', because most get junked by my
filters) - and if not for the fact there were multiple copies of them
on the same day, *might* have fooled me to explore... though I NEVER
click on an email link, would only login to PayPal through a direct
Here is what the message says:
= = = =
SUBJECT: PayPal Account Security Measures
We recently noticed one or more attempts to log in
to your PayPal account from a foreign IP address.
If you recently accessed your account while traveling, the unusual
log in attempts may have been initiated by you. However if
you are the rightful holder of the account,click on the link below
to log into the account and follow the instructions.
- - -
(the actual link, which shows up in a source view of the email,
however is <http/confirm-your-data.com/login.php> and other
messages had this as the link:
(I've disabled the links, please DO NOT click on them as they
are likely rogue sites that could harm your computer)
- - -
If you choose not to complete the request, you give us no choice but to
suspend† your account temporary.
It takes at least 12 hours for the investigation in this case and we
strongly recommend you to verify your account at that time.
If you received this notice and you are not the authorized account
holder, please be aware that it is in violation of PayPal policy to
represent oneself as an other PayPal user.Such action may also be in
violation of local, national, and/or international law. PayPal is
committed to assist law enforcement with any inquires related attempts
to missapropriate personal information with the intent to commit fraud
or theft. Information will be provided at the request or law enforcement
agencies to ensure that perpetrators are prosecuted to the fullest
extent of the law.
Thanks for your patience as we work together to protect your account.
PayPal Account Review Department.
= = = =
There are many reasons why this message is dangerous at this
particular point in time.
I received a LEGITIMATE query from PayPal last week to verify
address records with my account. This *sounds* like a follow
up to that request!
And I do access my account on occasion from a different country,
which is what the opening paragraph hints at. (the best lies
are ones grounded in a part of the truth!)
Flags that indicate it isn't legitimate:
1. No inclusion of my account name
2. Wrong PayPal email address
3. Cloaked link which is easy to spot
BOTTOM LINE: Do NOT react *emotionally* to any message that
purports to come from PayPal.
And NEVER click on links to PayPal in your email - instead
log in to your account directly through a web interface and
verify if the email was legit or not.
Hope this helps save a few troubled moments.
P.S. - Another couple of phishing emails I got today, which
were however flagged by my email filters were:
Subject: Notification of Limited Account Access
Subject: Your PayPal Account has been Restored