Unbelievably bold phishing scam

Paypal phishing scam

This morning I received an unbelievably bold phishing attack e-mail masquerading as a Paypal payment notification for a watch. Every detail of the e-mail looks exactly like a real payment notification e-mail that one would receive from Paypal after making an online purchase, except that all the hyperlinks in the e-mail go to http://gw-club.ru/wps.php?pprec

This type of attack is often how organizations are penetrated by hackers. In a company with hundreds or perhaps even thousands of computers on an internal network, all it takes is one person to be duped by such an e-mail, who then clicks on a link and has their system infected with a trojan. One can easily understand how maintaining security can be a major issue.

This particular phishing attack may have been sent out from drone machines in a botnet. If someone really wanted to attack a specific person, they could tailor a phishing attack to a specific person based on information about them.

I cannot verify what the above link actually points to but I don’t want to find out either.


Comments

Leave a Reply

Your email address will not be published. Required fields are marked *