The ancient one,
Thanks for taking the time to make our members aware of this PayPal phishing scam. Especially this one. Note the reason why Malwarebytes added the "update" to their blog post .............
"Paypal Phishing Flood UPDATED "
Underneath where you see an email similar to the one you received it reads .......
To add even more urgency to this particular scam, similar e-mails have been going out that advise the user of a recent deposit to their PayPal accounts. The email includes a PDF receipt with all the details, however the attachment is a poorly masked EXE, made to look like a PDF. In reality, the executable launches a well known Zeus variant on the system.
For those that don't remember, Zeus is a family of Banker Trojans that steal users credit card and bank login information. The family has been around for many years, always modifying it's tactics with each new variant to avoid security protections. The current sample being sent with the malicious e-mail is well known and detected by many popular antivirus applications, including Malwarebytes Anti-Malware, which detect it as Spyware.Zbot.ED.
More here: https://blog.malwarebytes.org/fraud-scam/2014/05/paypal-phishing-flood/
To those in doubt as to the emails' legitimacy, read the "Comments:" section under a copy of the email. ⇒ Paypal Take Action
I received this email today, but I did not click on the link that was provided. I did go to my PayPal account but not via the link. Nothing there about any problems. I can see where many people get fooled by this kind of message.
"ID:7W263786RM05513034 - Incorrect PayPal login.
Dear Account Holder,
Recently, there's been activity in your PayPal account that seems unusual compared to your normal account activities. Please log in to PayPal to confirm your identity and update your password an security questions.;
To help protect your account, no one can send money or withdraw money. In addition, no one can close your account, send refunds, remove any bank accounts, or remove credit cards. What's going on?
We're concerned that someone is using your PayPal account without your knowledge. Recent activity from your account seems to have occurred from a suspicious location or under circumstances that may be different than usual. What to do? Log in to your PayPal account as soon as possible. We may ask you to confirm information you provided when you created your account to make sure you're the account holder. We'll then ask you to change your password and security questions.
You should also do the following for your own protection:
Check your account details (address, email, phone, etc.) to make sure they're accurate.
Click here to activate your account
Anyone who clicked on that link sure gave up a lot of information to the scammers.