Monday, July 9, 2012
If You're Going to Prey on People's Xenophobia, at Least Spell "Foreign" Correctly
This is a really good one. The email came from "security_at_paypal.com (vovpbu_at_company.info)" [email ampersand removal mine], which was a real good tipoff right away. Secondly the to: address was "email@example.com," which is just some damned weak sauce right there. But of course the email itself is what really sells it.
(Emphasis added by me. Also I took out his username in the web address to avoid this genius vanity googling and finding me)
PayPal knows that you care how information about you is used and shared, and we appreciate your trust that we will do so carefully and sensibly.
However we recently noticed that your account was accessed from several foregin IP addresess.
Because information about our customers is an important part of our business we treated this matter as a possible fraudulent attempt to obtain your personal (sensitive) information.
This has resulted in the suspension of your account untill your personal information can be verified .
To begin the verification process please access your account immediately by following the secure link below:
https://www.paypal.com/log_into.cfm [CS: hovering over this link shows a destination of ampoulife_dot_com/userfiles/*guys user name*/ds.php. Realllly sneaky, guy: you almost had me]
If the verification process is successful your account will be restored in aproximatly 24 hours.
Please Note: If your account information is not updated within the next 72 hours, we will assume this account has been compromised and will be permanently suspended.
We apologize for this inconvenience, but the purpose of this verification is to ensure that your account has not been fraudulently used and to combat fraud.
Awesome, right? Bet they're just neck-deep in paypal account data. Come on! This is 2012! Is ANYONE still falling for this nonsense?