It looks safe to me and Mozilla Firefox didn't give me any warnings. I signed in and then back out again.
There have been emails that I just started getting the past gew days that claimed they were from PayPal, but I have a way of knowing they weren't real. Wondering if someone clicked on one of those links and got taken to the fake PayPal website.
Fake emails also has fake url. If you get this email, Do NOT respond. Delete it.
From: email@example.com Fake = <firstname.lastname@example.org>
Subject: Notification of Limited Account Access
Dear PayPal Member,
As part of our efforts to provide a safe and secure environment for the online community, we regularly screen account activity. While reviewing your PayPal accounts, we observed activity that we would like to further verify. For this reason, limitations have been placed on your account until your will review your registered intormation. In order to resolve the account limitations, complete our online form by clicking on the following link :
Log into your PayPal account
After we have gathered the necessary information, your account will be reviewed for reinstatement and you will be notified by e-mail of our decision.
We thank you for your prompt attention to this matter and apologize for any inconvenience.
Account Review Department
Extended SSL no match for the power of XSS
By Dan Goodin in San Francisco
Published Friday 16th May 2008
A serious scripting error has been discovered on PayPal that could enable attackers to create convincing spoof pages that steal users' authentication credentials..
The cross-site scripting bug is made all the more critical because it resides on a page that uses an extended validation secure sockets layer certificate. The new-fangled SSL mechanism is designed to give users a higher degree of confidence that the page they're visiting is secure by turning their browser address bar green.