PayPal-targetted Phishing Spam Email Morphs

Posted on February 23, 2007
Filed Under /dev/null/ | 68 views |

Without question the most popular post on my blog has been PayPal Phishing Scams Getting Better and Better in which I describe how a Paypal-targetted phishing email, seemingly sent by Wayne Bakewell, scams unwary recipients into revealing their Paypal login info.

It’s unfortunate that’s the most popular post because most people who read it seem to do so only after they’ve been taken by the scam.

So in that light I am annoyed to inform that the scam email has morphed. The scam is exactly the same but after being Wayne Bakewell for almost a year, it is now titled “Receipt for Your Payment to Debbie’s RC World, Inc” and contains:

This email confirms that you have paid Debbie’s RC World, Inc., (eric@debbiesrcworld.com) $124.99 USD using PayPal.

This credit card transaction will appear on your bill as “PAYPAL DICK’s Sporting*”.

The purported address the product is being shipped to (and thus the person they would have the email recipient believe is trying to rip them off) is:

William Rusaw
11 Raritan Avenue
Highland Park, NJ 08904
United States

The link in the email now goes to a page hosted on: http://www.ba-tek.com. Undoubtedly their server has been compromised and, as with the Bakewell email, will change as the scammer needs new servers to host his fake Paypal site.

If you’ve received this email and found this post I hope it’s before you clicked the link in the email. For a complete description of how this scam works, and why niether Paypal, nor William Rusaw, nor BA-TEK, Inc. are likely to blame, please read my original post and associated comments: PayPal Phishing Scams Getting Better and Better.

If you clicked the link and entered your Paypal info and then found this post, in the comments are some suggestions for measures you can take to mitigate any potential damage.

And one final thought: email lies. As we wouldn’t believe an unsolicited email that showed up telling us we’ve won $100 000, so too should we not believe any email about impending disaster.

When in doubt, email lies.

Comments

• 
  

• The Other Blog (for geeks)

  binary code

• Pages

  • Installing calc.pl under OS X
  • Ruby Class: Mach Speed
  • Ruby Class: Temperature Conversion

• Recent Posts

  • This is The End
  • Yeah Sure, Go Nuts
  • iTunes Movies in Canada: First Impressions
  • The Reason Dev Environments Should be Sandboxed
  • CNN Shirts Beta
  • HP Thinks I’m an Idiot
  • But It Always Says It’s Sorry Afterwards!
  • Explaining My Twittering
  • Creative Looks Gift Horse In Mouth, Shoots it In Head, Apologizes Afterwards
  • Ventus Available Gratis

• Software

  • Drop Bocks

• Stuff and Things

  • Accordion Guy
  • blog-j
  • blogaritaville
  • David Akin’s On the Hill
  • Diana Galligan
  • FA: OSX
  • Fingers
  • Full Frontal Lobotomy
  • fuzzz.gaulin.ca
  • Global Nerdy
  • Ice 9
  • Kat Mullaly
  • kattekylling
  • Keebler.net
  • Paul Baranowski
  • Pony
  • Postmodern Sass
  • radical TRUST
  • Raganwald
  • Salad with Steve
  • Spiralgirl
  • The Dust bin

• Categories

  • /dev/code/
  • /dev/debug/
  • /dev/dropbocks/
  • /dev/null/
  • /dev/ruby

• About

  This is an area on your website where you can add text. This will serve as an informative location on your website, where you can talk about your site.

• Search

• Admin

  • Log in
  • Wordpress
  • XHTML