Pay Pal Members Beware of Phishers

Pay Pal Members Beware From Phishers and Cyber criminals

Dear Friends,

    Now we are producing before you about latest fraud emails which was seemed to be generated from Pay Pal and it came to one of our team member and then feeling it suspicious he mailed the entire content to Pay Pal and in response what Pay Pal said we are producing that before you for your future reference. 

Here is the suspected mail from spammer with its header file which was sent to Pay Pal for verification:-

Form Message
customer subject: Please use a supported language when contacting us.
customer message: Additional Information: 'Again I recived this mail was
it from yours.?

paypal.feedback@echosurvey.com to me
 show details ##:## PM (## hours ago)

Dear Kept Hidden ,( Here they used the name, which they did not use in previous mail)

On ##/##/#### I replied to the email message you sent regarding your

PayPal account. As part of PayPal's commitment to excellence, I want to
make sure I met your needs in my response. Would you please take a
minute to answer a few questions to let me know how I did?


http://surveys#.incontact.com/paypal/survey_paypal.taf?survey_id=####&us
er_id=D###D#D#-DD#C-###A-####-############

>To respond to our survey, please click on the web address above. If
that does not work, please cut and paste the entire web address into the
address field of our browser. NOTE: Please respond within five days so
that you can provide timely feedback to me, Judith . AFTER # DAYS, THIS
INVITATION WILL EXPIRE.
>
>If you wish to take the survey anonymously, click the link below:
>

>http://surveys#.incontact.com/paypal/survey_paypal.taf?survey_id=####'

Here is the response from Pay Pal about the above email:- 

Dear Name Kept hidden,

Thank you for contacting PayPal.

Hello, my name is Hazel. From reading your email, I know you are
concerned about the suspicious email you received. I'm sorry if this
caused you any trouble, I'll be glad to explain this further for you.

Thank you for submitting this suspicious email, Mr. Hidden. We did
not send it, so please don't click any link in the email and delete it
if you haven't already. We also recommend that you log in to your PayPal
account and check your transaction history for any inaccuracies.

Please forward the original email to spoof@paypal.com and then delete
the email from your mailbox. Never click any links or attachments in a
suspicious email.

The majority of Unauthorized Access cases are a result of inadvertently
providing account information, such as bank or credit card account
numbers on a 'fake' PayPal website or in response to a 'fake' PayPal
email.

It is also possible that if you have other accounts (email, eBay, etc.)
that share the same password as your PayPal account, and one of those
accounts was compromised, your PayPal account can be at risk of being
compromised as well.

Remember these steps to help protect your PayPal account from
Unauthorized Account Access:

Emails - Make sure they are sent from PayPal

  1. If you receive an email and are unsure whether it is from PayPal,
open a new web browser (e.g., Internet Explorer or Netscape) and go to
the PayPal website. Don't click on any link in an email which seems
suspicious to you.
  2. Some spoof websites will send emails that pretend to come from
PayPal to entice you to log in at the spoof URL. Be extremely cautious
of emails that direct you to a website that asks for your information,
such as your bank or credit card account numbers.
  3. Stay safe; don't respond to emails asking for any of the
following:
  o Your password and email address combination
  o Credit card numbers
  o Bank account numbers
  o Social security numbers
  o Drivers license number
  o First and Last Names

Email Greeting -

PayPal will never send you an email with the greeting "Dear PayPal User"
or "Dear PayPal Member." Emails initiated by PayPal will address you by
your first and last name, or the business name associated with your
PayPal account. Please note that the automatic response you get from us
may not address you by name.

Always log into the PayPal site

  * PayPal will only ask for information after you have securely
logged in.
  * For your security, PayPal will never ask you to re-enter your full
bank account, credit, or debit card number without providing you at
least the last two digits of the number. These digits let you know that
we already know the full number and are asking you for the rest of it.
Beware of any website or email asking for these numbers for
"verification" that does not prove that it knows the number by providing
at least the last two digits.

Website pages - make sure that they are hosted by PayPal

  1. When using the PayPal service, always make sure the PayPal url
address listed at the top of the browser begins with "https." The "s"
ensures that the website is secure. Even if the URL contains the word
"PayPal" it may not be a PayPal webpage.
  2. Look for the '"lock" symbol that appears in the lower right hand
corner of the browser. This symbol indicates that it is a secure site.

Do not download attachments, software updates, or any application to
your computer via a link you received in an email. PayPal will not ask
you to download anything for your account to work.

Passwords - keep it on PayPal

  1. Use a unique password for the PayPal account and change it every
30-60 days.
  2. The password should be one that is not used on any other site,
service, or login.

Thanks for sharing your concerns with us. We value what you have to say,
and we know situations like this can be difficult. If you have more
questions, visit our Help Center by clicking "Help" in the top right
corner of any PayPal page.

Sincerely,
Hazel
PayPal, an eBay Company

Copyright© 2009 PayPal Inc. All rights reserved.

Consumer advisory: PayPal Pte Ltd, the Holder of the PayPal™ payment
service stored value facility, does not require the approval of the
Monetary Authority of Singapore. Consumers (users) are advised to read
the terms and conditions carefully.

Beware From phishing mail Pay Pal Members

Pay Pal Members Beware From Phishers and Cyber criminals

Dear Friends,

    Now we are producing before you about two fraud emails which was seemed to be generated from Pay Pal and it came to one of our team member and then feeling it suspicious he mailed the entire content to Pay Pal and in response what Pay Pal said we are producing that before you for your future reference. 

Here is the suspected mail from spammer with its header file which was sent to Pay Pal for verification:-

Form Message
customer subject: English
customer message: Additional Information: 'I received this mai on
##/##/#### and was it from yours?

"Dear PayPal member,

We're sorry. We are not able to process your recent reply to our email.
We are the processor for the email surveys for PayPal and are not
directly linked to the PayPal customer service center.

Please respond through the survey link imbedded in the original email
you received from us.

Thank you and we apologize for the inconvenience.

PayPal Survey Partner"

This is the header:-
Delivered-To: kept hidden##@gmail.com
>Received: by 10.115.60.18 with SMTP id n##cs######wak;
> Mon, ## Jul #### ##:##:## -#### (PDT)
>Received: by 10.140.203.3 with SMTP id
a#mr#######rvg.###.#############;
> Mon, ## Jul #### ##:##:## -#### (PDT)
>Return-Path: <>
>Received: from mail.benchmarkportal.com (mail.echosurvey.com
[###.###.##.###])
> by mx.google.com with ESMTP id
##si########pzk.###.####.##.##.##.##.##;
> Mon, ## Jul #### ##:##:## -#### (PDT)
>Received-SPF: neutral (google.com: 207.166.99.104 is neither permitted
nor denied by best guess record for domain of mail.benchmarkportal.com)
client-ip=###.###.##.###;
>Authentication-Results: mx.google.com; spf=neutral (google.com:
207.166.99.104 is neither permitted nor denied by best guess record for
domain of mail.benchmarkportal.com) smtp.mail=
>precedence: bulk
>in-reply-to: 94dd4f4c0907201044pa3ba0ct@mail.gmail.com
>return-path: <>
>Date: Mon, ## Jul #### ##:##:## -####
>Message-Id:
>from: "paypal.feedback"
>to:
>subject: Automatic Response'
 

Now what Pay Pal replied:- 

Dear Name Kept hidden,

Thank you for contacting PayPal.

Hi Kept hidden! I have read your email and understand your concern over the
email you received. Let me assist you further.

If you think the email you received did not match the description I have
included below please forward the email you received to
'spoof@paypal.com'.

PayPal frequently issues surveys in attempt to find more ways to improve
our service and accommodate your needs.

  * If you receive a survey from PayPal, or a third party vendor on
behalf of PayPal, it will arrive as a link sent to you through email *
  * To get to the survey page, simply click on the link, or paste the
link into your browser's web address box

Please keep in mind that a medium like email allows anyone to send a
message to you. Before entering information into the survey you received
via email, you should verify the source of the email.

* To make sure that the email survey you received was from PayPal,
follow these tips:

  1. You will NOT need to enter your password at any point during the
survey
  2. The survey you received will never ask you for any personal
information
  3. All surveys will address you by first and last name

We appreciate your input, and we thank you for using PayPal!

We know situations like this can be difficult, so thanks for working
with us. If you have more questions, visit our Help Center by clicking
"Help" in the top right corner of any PayPal page.

Sincerely,
A Name is there
PayPal, an eBay Company

Copyright © 1999-2009 PayPal. All rights reserved.
Consumer advisory - PayPal Pte. Ltd., the holder of PayPal's stored
value facility, does not require the approval of the Monetary Authority
of Singapore. Users are advised to read the terms and conditions
carefully.

More Tips for Pay Pal Account Security

How To Keep Your Pay Pal Account More Safe?

Dear Friends,

  One of our reader has given his valuable command over Pay Pal Account Security and it seemed to us that it should post on our blog so that our other readers get some more knowledge about their security tips for Pay Pal and we will suggest you to read our previous posting first and this is the continuation of that discussion and we think this will help you to keep your Pay Pal Account more and more safe from hacking or money loss.

Thanks

Here is the valuable comment of Kailash.

 All About Opensource said...

"I would like to say thanks to all well wishers of this site and also Urproblemmysolution Team for maintaining a such a informative site. 
In this post Urproblemmysolution Team almost cover all the things regarding paypal, though i just need to add few point like when ever trying paying something via paypal for any kind of subscription with multiple payment term please do not check the options like "Auto renewal" or "Auto recharge" or "auto payment option" .
Before paying or receiving any money in paypal please read T&C carefully that will take few min for first time but those few min can save your $$$$ being fraud by some cracker. 
Keep Changing your paypal password in every 7 days or even after every two transaction. 

FYI the official site of Paypal is www.paypal.com

p.s. On-Screen Keyboard can be accessible by type "osk" on "Run"

Cheers :) !!!
Kailash"

How to keep Pay Pal Account Safe from Hackers/Crackers

                            How to keep Pay Pal Account Safe from Hackers/Crackers

Dear Friends,

  In our last posting we discussed about the modern secured net transaction mediator Pal Pal and what it is and how it works and what type of security system they maintain for their customers and there we also told that their account is now also hacked by hackers/crackers. Before discussing the tips for preventing the hackers/crackers we think that we should give you some basic knowledge about some terms used here. So lets start.

1) Hacker/Cracker:- Hacker and Cracker these are two different terms and used for different categories of men in the net. Hackers means those persons, who can access your personal data and site or email unauthorisedly but they don’t create any danger to your life or your system and they show you how much unsecured is your system. They are good for the cyber world but on the other hand crackers do the same thing but cause casualty to your system or your personal data and money. So our fighting is against cracker and moto is not to give a chance to hacker for accessing our system or personal database in net. We think we are now clear about this.

2) Keylogger :- What is keylogger? This is the most dangerous spyware or a computer program, which studies your all keys when you supply any input to your computer or type it. It may be in hardware form also. This may be installed by cyber criminals in your machine through net if your antivirus program is not strong. This may be kept with some links and if click on that in net that may be installed in your computer and generally phishing links and some pornography links carry keylogger with them for installing them in your laptop or PC. Then they sent your data or user name password to the person, who installed that software in your computer through net. Detecting the presence of a keylogger on a computer can be difficult. So-called anti-keylogging programs have been developed to thwart keylogging systems.

3) On-Screen Keyboard :- This is the key board, which has already been installed in your computer for working with this if situation demands. How you will get it. You go to Start->All Programs->Accessories->Accessibility->On Screen Keyboard.

Now we say how to keep safe your Pay Pal Account. Here are the tips.

1) Create safe password by using safe password tips, discussed earlier.
2) Try to use gmail email id for registering your Pay Pal Account as this is more secure than others.
3) As Pay Pal e-transaction is very much secured so hacking pay pal site is very very tough and for that they use Keyloggers help. For getting rid of keylogger use On Screen Keyboard during typing email id and password in Pay Pal site.
4) Use a separate email id for registering Pay Pal.
5) Don’t share it with any other.
6) Please use paid antivirus for your computer.
7) Don’t use cyber café for this transaction as some cyber cafes use screen shot hidden software in their computers and you will not understand this.
8) Don’t use same password for your email id and Pay Pal Account as if anyone can hack your email id he also can hack your Pay Pal Account.
9) Once Pay Pal Account enquiry or transaction is over please delete all cookies (For knowing the reason pl read when cookie is dangerous) and Log out your Account.

Our other readers are also requested to comment over this for more security to the Pay Pal Account holder.

Thank you

Urproblemmysolution Team  

What is Pay Pal Account

What is Pay Pal (www.paypal.com) Account?

Dear Friends, 

            As per our words and promise we are going to discuss you about Pay Pal as this is the safest e-transactions in the world as if you visit the above noted website you will find it starts with “https” if you use normal browser and don't use faster browser and for that all the data passes through it to their server is in encrypted form. So we think we first introduce you what is Pay Pal. This is basically a mediator between you and the e-seller and for that they don’t charge any fees from you but they charge it from the seller and that is also a small percentage on sales value. Before that you will have to have an account with them. For opening the account you just need a valid email id, name and address, a valid telephone number. So now a question will arise in your mind that just with the help of that email id can I purchase anything from e-marketing? What should be your answer is it possible that you don’t have money in your account and you will purchase anything. So what you should do. You should keep a balance in your Pay Pal Account and from there you will spend and Pay Pal is taking responsibility to pay the amount to your seller where you don’t know seller directly but getting his product.  

           So in this stage a question may arise in your mind the why I will do so, I have credit card and debit card facility and I can purchase it by using those from net. Yes you can do that but mind it that all the net transactions are not done through secured channel. Some of them are unsecured and their there is every possibility of your credit card and debit card number get hacked and the hacker may misuse it and for that Pay Pal business is in boom. In our first part we discussed that a balance is needed in your Pay Pal Account and you can’t deposit money directly in your Pay Pal Account from out site the USA as the business is run from USA and for that you will have to transfer the balance to your Pay Pal Account from your credit card or some other cards as desired by Pay Pal. Only the American citizens can do the bank transfer and if you don’t have your credit card there is option to transfer the amount from your friend’s card also if your friend wants and for that I made a quarry to Pay Pal authority that why this system is continued by them and why the other countries don’t have the facility of bank transfer and in response they told that it is due to the security purpose and if a card is used the verification of person is possible and at the time of final transaction before purchase they use their Gausebeck-Levchin Test ( which we discussed earlier) for avoiding bot transaction and even I tried to access their site by using a proxy server but they denied. So you can say that it is secured. 

            We think now you have become angry on us and your anger is reaching in such a position that you will tell me then why you have posted this here if the system is so secured and you promised us that you will tell us the danger side of cyber world. Yes you are right that the system is very much secured but in spite of that the Pay Pal accounts are get hacked and the people are becoming victim over this and that is why we were discussing you the details of Pay Pal account system. In our next posting we will discuss you what are the dangers in Pay Pal account and why and how we can get rid of from there. So keep in touch with us.

Thanks

Urproblemmysolution team