Monday, September 5, 2022

PayPal Phishing Scam Invoices

Brian Krebs:

While the phishing message attached to the invoice is somewhat awkwardly worded, there are many convincing aspects of this hybrid scam. For starters, all of the links in the email lead to paypal.com. Hovering over the “View and Pay Invoice” button shows the button indeed wants to load a link at paypal.com, and clicking that link indeed brings up an active invoice at paypal.com.

Also, the email headers in the phishing message (PDF) show that it passed all email validation checks as being sent by PayPal, and that it was sent through an Internet address assigned to PayPal.

The e-mail really is sent through PayPal. The trick is that it encourages you to call a phone number, where they tell you to download remote control software.

Comments RSS · Twitter

Leave a Comment