MailGuard first detected and blocked the scam this morning, however at the time of writing (four hours later), our tests show that mail users with 56 other anti-virus engines are still vulnerable, with those providers yet to detect and block the threat.
This new PayPal email scam encourages users to surrender log-in credentials, credit card details and other personal information, in a similar way to other recent attacks.
The fake PayPal phishing email appears to come from the internet payments giant (although you’ll notice a slight branding inaccuracy of a hyphen used in ‘Support Pay-pal’), informing readers that key security information on their account has been changed and encouraging them to log in to their account using an enclosed link.
Once the user has clicked on the link they are taken to a phishing website, where they are asked to submit their PayPal username and password, before updating various details including personal information and credit card details.
An example of the phishing webpage is shown below:
Vigilant users would be immediately suspicious of a website claiming to be an official PayPal page but whose URL is payipal-com.com. PayPal would also not ask readers to submit credit card details in the event of your account being compromised.
Protection against phishing emails
To protect yourself against scams like this PayPal phishing email:
- Beware of emails which contain grammatical or branding errors, but purport to be from reputable organisations.
- Always hover you mouse over the links contained in emails in order to check their legitimacy – don’t click them unless you are sure they are safe.
- To ensure complete safety, type the URL it into your browser or navigate through Google search.
- Be particularly wary of emails asking you to supply personal details that the purported organisation should already know, especially those which ask for credit card or bank account details.
Adding a cloud-based email filtering solution will prevent scams like this PayPal phishing email from reaching your inbox and getting in front of staff.
While other security providers are yet to identify this phishing scam, MailGuard’s cloud technology successfully blocked the threat immediately, in real time.
If you’re experiencing problems, you can speak to a cloud security specialist on 1300 30 44 30 or email firstname.lastname@example.org
Keep up to date with email scams affecting your business by subscribing to MailGuard’s weekly update.