This is an email received about Paypal is a phishing scam and why not try to contact these people or log onto these sites and enter your data because you risk being stolen.
I sent this below to Paypal but they don’t reply – Their claim that a genuine email from Paypal will contain your name is patently false – I can easily get a name and matching email address and send a fake link.
Wonder what you think about this?
———————————————————————-
Dear David Smith – here is your latest Paypal update
Click here to log in.
and here’s a nice Paypal picture that looks real:
————————————————————————–
See how easy it is – your “What is phishing” page says:
You’ll know that an email/SMS is not from PayPal when:
The email/SMS uses a generic greeting like ‘Dear user’ or ‘Hello, PayPal member.’ We’ll always address you by your first and last name or the business name on your PayPal account.
——————————————–
NOT TRUE – As illustrated above I can very easily send someone an email and use their real name – easy to find names and email addresses. I can put a hidden link to a fake look-alike login website and get your login details and then go on a spending spree. So what you are saying is simply not true.
SO
1. your guidance about trusting an email that addresses you by name from Paypal is patent nonsense and dangerous
2. These “View your recent transactions emails” that you send out could easily be imitated and therefore fakes
3. By including your link to log on to Paypal you are training your users to become victims of phishing
4. The only way to avoid this is to remove the “Log In Now” and tell your users to log in to paypal in their usual way: “Simply head over to http://www.paypal.co.uk and log in to check out your recent activity.”
I find it unbelievable that you do this – you are keeping all that money and actually effectively training your customers to fall for scams.
If I was a victim of a paypal phishing attack I believe I would be able to sue Paypal for encouraging me (even training me through these notification emails) to fall for it…….
Hello and thank you for your interest! Before reading emaulul must identify real mail he sent. Your email adress is written in email, but by whom, or on the email address were sent these emails. For example: in Google Email, when you get to read an email; top left – email find true (or false email adress) that looks like this:
Mr. Williams David olevchik@i.ua
from: Mr. Williams David via srs.emailowl.com
reply-to: “Mr. Williams David”
to:
date: Fri, Mar 17, 2017 at 3:42 PM
subject: Greetings!
mailed-by: srs.emailowl.com
encryption: Standard (TLS) Learn more
As you can see, there is no correlation between server and email: olevchik@i.ua is false, the true is williamsdavid.3r@gmail.com, so if these two emails do not match, then be sure it is false.
I sent this below to Paypal but they don’t reply – Their claim that a genuine email from Paypal will contain your name is patently false – I can easily get a name and matching email address and send a fake link.
Wonder what you think about this?
———————————————————————-
Dear David Smith – here is your latest Paypal update
Click here to log in.
and here’s a nice Paypal picture that looks real:
————————————————————————–
See how easy it is – your “What is phishing” page says:
You’ll know that an email/SMS is not from PayPal when:
The email/SMS uses a generic greeting like ‘Dear user’ or ‘Hello, PayPal member.’ We’ll always address you by your first and last name or the business name on your PayPal account.
——————————————–
NOT TRUE – As illustrated above I can very easily send someone an email and use their real name – easy to find names and email addresses. I can put a hidden link to a fake look-alike login website and get your login details and then go on a spending spree. So what you are saying is simply not true.
SO
1. your guidance about trusting an email that addresses you by name from Paypal is patent nonsense and dangerous
2. These “View your recent transactions emails” that you send out could easily be imitated and therefore fakes
3. By including your link to log on to Paypal you are training your users to become victims of phishing
4. The only way to avoid this is to remove the “Log In Now” and tell your users to log in to paypal in their usual way: “Simply head over to http://www.paypal.co.uk and log in to check out your recent activity.”
I find it unbelievable that you do this – you are keeping all that money and actually effectively training your customers to fall for scams.
If I was a victim of a paypal phishing attack I believe I would be able to sue Paypal for encouraging me (even training me through these notification emails) to fall for it…….
Hello and thank you for your interest! Before reading emaulul must identify real mail he sent. Your email adress is written in email, but by whom, or on the email address were sent these emails. For example: in Google Email, when you get to read an email; top left – email find true (or false email adress) that looks like this: via srs.emailowl.com
Mr. Williams David olevchik@i.ua
from: Mr. Williams David
reply-to: “Mr. Williams David”
to:
date: Fri, Mar 17, 2017 at 3:42 PM
subject: Greetings!
mailed-by: srs.emailowl.com
encryption: Standard (TLS) Learn more
As you can see, there is no correlation between server and email: olevchik@i.ua is false, the true is williamsdavid.3r@gmail.com, so if these two emails do not match, then be sure it is false.