PAYPAL USERS BEWARE

Page 2 - Seeking answers? Join the AnandTech community: where nearly half-a-million members share solutions and discuss the latest tech.

Miramonti

Lifer
Aug 26, 2000
28,653
100
106
I think these scammers are trying to be wise by spamming people with a legitimate http web address so people let down their guard for the next time a bogus login alert goes out with a bogus web address.
 

rahvin

Elite Member
Oct 10, 1999
8,475
1
0
There was a recent report that because ICANN is allowing unicode domain registrations it is possible to have a domain that looks identical to a known domain but is in fact not the same domain because it is using unicode charactersets instead of ANSI. For example, you could register, www.paypal.com using a unicode letter used in another alphabet. This domain would look identical to the ANSI version but the domain would not be the same. This could be the first exploit of that vulnerability.

This was reported on slashdot about a month ago.
 

rbhawcroft

Senior member
May 16, 2002
897
0
0
Originally posted by: rahvin
There was a recent report that because ICANN is allowing unicode domain registrations it is possible to have a domain that looks identical to a known domain but is in fact not the same domain because it is using unicode charactersets instead of ANSI. For example, you could register, www.paypal.com using a unicode letter used in another alphabet. This domain would look identical to the ANSI version but the domain would not be the same. This could be the first exploit of that vulnerability.This was reported on slashdot about a month ago.

thats pretty much what I meant, but didnt know you could do it with that many other letters, jeez, there are going to be a few scams on that, thats why I still think paypal should use client software not web pages.
 

Nocturnal

Lifer
Jan 8, 2002
18,927
0
76
or i was thinking maybe this guy forgot to change his domain name? lol

like maybe it was paypall or something but he forgot to add/change the letter.

moron.
 

goodoptics

Platinum Member
Aug 18, 2000
2,652
0
0

Skyclad1uhm1

Lifer
Aug 10, 2001
11,383
87
91
Was it an HTML email, and if so, may the real link have pointed elsewhere instead? Maybe they are checking which email adresses worked with confirmation of reading or something?
 

snooker

Platinum Member
Apr 13, 2001
2,366
0
76
I still do believe this to be an email from paypal. Did you check the email header to see if it came from a paypal email server or not?


I followed the link and all it does is forward to https://www.paypal.com/cgi-bin/webscr, which is 100% paypal.

As for the paypal CSR you spoke to, I would not really take anything they say to heart, after all, they are probably minimum wage help answering phones and they only know what is on the paper in front of them.


If someone is trying to get peoples usernames and passwords to paypal accounts, they aren't doing a very good job by sending the people to the real paypal site......

I dunno though, it could be a disgruntled employee of paypal who sent it...who knows
 

Double Trouble

Elite Member
Oct 9, 1999
9,270
103
106
Anyone who reads that email and thinks it's "legit" is nuts. It's obviously written by some 13 year old trying to pull some sort of scam.

>>If it's not a password stealing scam, I'm a monkey's uncle

Agreed!
 

joinT

Lifer
Jan 19, 2001
11,172
0
0
Originally posted by: tagej
Anyone who reads that email and thinks it's "legit" is nuts. It's obviously written by some 13 year old trying to pull some sort of scam.

>>If it's not a password stealing scam, I'm a monkey's uncle

Agreed!

Agreed~! :disgust: Man, I'm SOOO done with paypal after seeing those 2 links that Jmmsbnd007 posted. HORRIBLE. Buh-Bye Paypal.
 

apoppin

Lifer
Mar 9, 2000
34,890
1
0
alienbabeltech.com
Originally posted by: Paypaldamon
Hi,

I do have to repeat that the email that the user received IS NOT a valid PayPal email. I also need to warn users that another scam going around is stating that you have received 250.00 and that you need to add an email address to your account.

Typing www.paypal.com (http://www.paypal.com will convert to https://www.paypal.com in your browser window).

Not in my browser window (IE 5.5). It isn't till I follow a link to sign up that I get the secure site.

Please explain.

 
sale-70-410-exam    | Exam-200-125-pdf    | we-sale-70-410-exam    | hot-sale-70-410-exam    | Latest-exam-700-603-Dumps    | Dumps-98-363-exams-date    | Certs-200-125-date    | Dumps-300-075-exams-date    | hot-sale-book-C8010-726-book    | Hot-Sale-200-310-Exam    | Exam-Description-200-310-dumps?    | hot-sale-book-200-125-book    | Latest-Updated-300-209-Exam    | Dumps-210-260-exams-date    | Download-200-125-Exam-PDF    | Exam-Description-300-101-dumps    | Certs-300-101-date    | Hot-Sale-300-075-Exam    | Latest-exam-200-125-Dumps    | Exam-Description-200-125-dumps    | Latest-Updated-300-075-Exam    | hot-sale-book-210-260-book    | Dumps-200-901-exams-date    | Certs-200-901-date    | Latest-exam-1Z0-062-Dumps    | Hot-Sale-1Z0-062-Exam    | Certs-CSSLP-date    | 100%-Pass-70-383-Exams    | Latest-JN0-360-real-exam-questions    | 100%-Pass-4A0-100-Real-Exam-Questions    | Dumps-300-135-exams-date    | Passed-200-105-Tech-Exams    | Latest-Updated-200-310-Exam    | Download-300-070-Exam-PDF    | Hot-Sale-JN0-360-Exam    | 100%-Pass-JN0-360-Exams    | 100%-Pass-JN0-360-Real-Exam-Questions    | Dumps-JN0-360-exams-date    | Exam-Description-1Z0-876-dumps    | Latest-exam-1Z0-876-Dumps    | Dumps-HPE0-Y53-exams-date    | 2017-Latest-HPE0-Y53-Exam    | 100%-Pass-HPE0-Y53-Real-Exam-Questions    | Pass-4A0-100-Exam    | Latest-4A0-100-Questions    | Dumps-98-365-exams-date    | 2017-Latest-98-365-Exam    | 100%-Pass-VCS-254-Exams    | 2017-Latest-VCS-273-Exam    | Dumps-200-355-exams-date    | 2017-Latest-300-320-Exam    | Pass-300-101-Exam    | 100%-Pass-300-115-Exams    |
http://www.portvapes.co.uk/    | http://www.portvapes.co.uk/    |