paypaldamon
|
posted on January 12, 2001 10:58:58 AM new
Hi All,
There is a site out there trying to harvest passwords. As a reminder, a PayPal representative will never ask you for your password and the only site you should log into is PayPal (any links we have will direct you to our site and will not contain any other information).
This is the site:http://secure.paypal-sINVESTrvices.com
This is a copy of the email going out:
Dear PayPal customer,
Due to technical problems we need You to confirm your E-mail Address and
Passwor
d, just
click on the following link and enter your E-mail Address and Password:
http://secure.paypal-sINVESTrvices.com
If your E-mail program has problems with hypertext links,
you may also copy the above link and paste it into your browser.
If you need help, please contact customer service by email
at [email protected]
Thanks for using PayPal!
I am also including the link for the security tips on our site.
http://www.paypal.com/cgi-bin/webscr?cmd=p/gen/fraud-prevention-outside.
A user also sent me something else that is something to be aware of (not sure that this is part of the other issue)
http://secure.paypal-services.com/
If you have any doubt about a link you are clicking on, please simply log in to PayPal by going to PayPal.com. Any payments made to your account will be reflected in your transaction log.
Thank you for your attention to this.
|
Zazzie
|
posted on January 12, 2001 11:04:19 AM new
Do you send emails to all Paypal account members--regarding this harvesting???
I certainly hope you are not relying on the boards to get the info out to all your members
|
nanastuff
|
posted on January 12, 2001 11:06:35 AM new
MOST excellent, Zazzie......Damon??
|
katzname
|
posted on January 12, 2001 11:09:57 AM new
I believe we are all waiting for an answer to this one..........
|
cix
|
posted on January 12, 2001 11:11:32 AM new
I sure am waiting
|
nanastuff
|
posted on January 12, 2001 11:17:04 AM new
To the top and waiting.........
|
paypaldamon
|
posted on January 12, 2001 11:19:52 AM new
Hi,
Yes, fraud is aware of the issue.
It appears that it is possibly linked to what I posted here:
http://secure.paypal-services.com/
Notification-No, emails are not sent to the entire user base. I've put in a request to have these issues on the site for further notification.
Sorry, but I am in the middle of going to other forums to advise users.
|
nanastuff
|
posted on January 12, 2001 11:24:42 AM new
ok Damon....sorry, but after I put my password in (on that link you provided), THEN WHAT????? What do I click on to find out what the heck you are talking about??
|
Zazzie
|
posted on January 12, 2001 11:43:47 AM new
Damon----there is no way that all the PayPal users are going to see these warnings not to go to that site as instructed...
PayPal needs to have an EMAIL WARNING system implemented....Come on Damon--go crunch some numbers and figure out a program that can do this. I bet you'd get a nice bonus 
|
bobbysoxer
|
posted on January 12, 2001 11:45:29 AM new
Damon
How are they getting our email addys?
not bobbysoxer on eBay
[email protected]
|
paypaldamon
|
posted on January 12, 2001 11:49:56 AM new
Hi nanastuff,
Would you please tell me what link you clicked on? Please do not access any of these links (other than the security tips link).
Send me your account email address to [email protected]. If you clicked on one of these links for the fake sites, please login to the account and change your password immediately.
|
magazine_guy
|
posted on January 12, 2001 12:11:49 PM new
nanastuff- you're kidding, right?
|
barrelracer
|
posted on January 12, 2001 12:17:02 PM new
I sure hope she is!
~Not barrelracer on ebay, don't pick on them!~
|
barrelracer
|
posted on January 12, 2001 12:31:49 PM new
Notification-No, emails are not sent to the entire user base. I've put in a request to have these issues on the site for further notification
Thinking about this, it seems to be a half-baked way to do things, warning users they could be giving away their funds on a message board?
This is what, the 3rd or 4th time a fake site has been created, and paypal still does not impliment any kind of warning system on their site......
sad.
I am so glad a request was put in.
~Not barrelracer on ebay, don't pick on them!~
|
mhodge99
|
posted on January 12, 2001 01:03:00 PM new
Personally I have only had one problem with Paypal and that was cleared up quickly but I have to ask one question:
PAYPAL - What are you going to do about this?
Somebody registers a domain name that looks like Paypal's, harvests email addresses off of the auction sites, send the link to said email addresses, and sits back to enjoy the ride!
After checking out the link provided, I checked out Paypals site and noticed that they allow people to view the source (code)of their site. It is easy to copy and paste that info into another site. A quick WHOIS of the domain name and all the info is there including: name, address, phone, email (All, I'm sure, is fake but at least it is info).
|
ed123
|
posted on January 12, 2001 01:19:27 PM new
Haha, they mirroed the site exactly to the regular paypal.com EXCEPT the login part. Gee, im surprised this wasnt thoguht of before today. Shame on you paypal!
|
barrelracer
|
posted on January 12, 2001 01:22:14 PM new
It was thought of before today. This is the third or fourth time it has happened.
That is why it is so sad paypal does not have a better warning in place than message boards.
~Not barrelracer on ebay, don't pick on them!~
|
avaloncourt
|
posted on January 12, 2001 02:09:21 PM new
I used that site and went through the verification process. Obviously, I didn't use my information but I gave the site owner the message in the form of an email and password.
email: you@areadumb***.com
password: ****you
It was very nice that the site then told me my account was verified.
[ edited by avaloncourt on Jan 12, 2001 02:10 PM ]
|
mrssantaclaus
|
posted on January 12, 2001 03:11:15 PM new
ROTFLMAO
Hey - like I said before PayPal doesn't need to ask for your password - they already have it!!!!
AND if the site went down you would have to just reset your password NOT give them your old one.
Just gotta use your brain.
Oh, and don't give your credit card # when someone calls you on the phone, either!
|
