Here in this post i will talk about a phishing attack to hack Paypal account by obtaining Paypal account password using a phisher.
days before...a guru received an email that made him to think a bit. The
email was from Paypal and it asked him to login in his Paypal account
urgently as it said that a third party has an unathorised access to his
account and for avoiding it, he should login with the provided link in
the mail. I have provided a screenshot of the mail below...just check
i was just shocked for a minute....But, i then just checked out the
link in mail by just hovering the mouse over the link...As we all
know...the hyperlink for the text over which mouse is hovered is
displayed in the status bar. And on viewing the link for "Activate your
account" i was quite relieved.....you know why??? Yes..you guessed it
right !! The link to activate account was not leading me to paypal but
to a phisher ready to extract my password....
Then i thought of
making a post to make you people safe from phishers to protect your
online safety from such phisher and phishing procedures.
I found that even Paypal has its policies to prevent fooling of its members....Paypal says:
PayPal, protecting your account's security is our top priority.
Recently, PayPal members have reported suspicious-looking emails and
fake websites. These emails are not from PayPal
and responding to them may put your account at risk. Please protect
your PayPal account by paying close attention to the emails you receive
and the websites you visit.
Please use the following tips to stay safe with PayPal:
Safe Log In: To log in to your PayPal account or access the PayPal website, open a new web browser (e.g., Internet Explorer or Netscape) and type in the following: https://www.paypal.co.in
Greeting: Emails from PayPal will address you by your first and last name
or the business name associated with your PayPal account. Fraudulent
emails often include the salutation "Dear PayPal User" or "Dear PayPal
Email Attachments: PayPal emails will never ask you to download an attachment
or a software program. Attachments contained in fraudulent emails often
contain viruses that may harm your computer or compromise your PayPal
Request for Personal Information:
If we require information from you, we will notify you in an email and
request that you enter the information only after you have safely and
securely logged in to your PayPal account.
emails will request details such as your full name, account password,
credit card number, bank account, PIN number, Social Security Number,
or mother's maiden name.
If you think that you have received a fraudulent email (or fake website), please forward the email (or URL address) to email@example.com and then delete the email from your mailbox. Never click any links or attachments in a suspicious email."
Thus guys...remember henceforth, four main points to keep safe from hacking by phisher :
1. Paypal emails are always calling you by your name and not by stupidity like "Dear Paypal user" or so.
2. They never ask you to download any software or assignment.
Even you get such emails which might appear to be truly convincing real
email... always check the link you are going to click. This is most
important. Because that link may contain a phisher for you.
4. And the last one always open in new browser and only then try to login and not by link provided in the email.
guys...follow the steps given above to prevent yourself from being
hacked by a phisher. The above steps prevent attacker from hacking email accounts using a phisher.