Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Share Post: Reddit Facebook
Beware: PayPal phishing texts state your account is 'limited'
#1
https://www.bleepingcomputer.com/news/se...s-limited/          Beware: PayPal phishing texts state your account is 'limited'
By Lawrence Abrams
January 3, 2021 12:58 PM      A PayPal text message phishing campaign is underway that attempts to steal your account credentials and other sensitive information that can be used for identity theft.

When PayPal detects suspicious or fraudulent activity on an account, the account will have its status set to "limited," which will put temporary restrictions on withdrawing, sending, or receiving money.

A new SMS text phishing (smishing) campaign pretends to be from PayPal, stating that your account has been permanently limited unless you verify your account by clicking on a link.

"PayPal: We've permanently limited your account, please click link below to verify," the smishing text message reads.

Clicking on the enclosed link will bring you to a phishing page that prompts you to log in to your account, as shown below.  If you log in on the phishing page, the entered PayPal credentials will be sent to the threat actors. The phishing page then goes a step further as it will try to collect further details from you, including your name, date of birth, address, bank details, and more. The collected information is used to conduct identity theft attacks, gain access to your other accounts, or perform targeted spear-phishing attacks.

Yesterday, two other people I know received these phishing texts, so it is a very active campaign, and everyone needs to watch out for these messages.

Smishing scams are becoming increasingly popular, so it is always important to treat any text messages containing links as suspicious. As with all phishing emails, never click on suspicious links, but instead go to the main site's domain to confirm if there is an issue with your account.

What should you do if you enter info at this link?
If you received this text and mistakenly logged into your PayPal account or provided other information, you should immediately go to Paypal.com and change your password.

If you use that same password at other sites, change them there as well.

Finally, you should look out for other targeted phishing campaigns using the submitted data. BleepingComputer also suggests that you monitor your credit report to make sure fraudulent accounts are not created under your name.

To prevent identity theft, you can also temporarily freeze on your credit report to stop banks and other companies from issuing credit under your name.
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  Your next Phishing email may come straight from PayPal tarekma7 0 814 08-08-2022 , 10:39 AM
Last Post: tarekma7
  Online Shoppers Beware, Mobile Scams Are on the Rise (Bitdefender ) mrtrout 0 446 01-01-2022 , 06:53 AM
Last Post: mrtrout
  Beware this 'mobile version' of Cyberpunk 2077 that's actually ransomware Bjyda 0 922 12-23-2020 , 10:12 PM
Last Post: Bjyda
  Wroba Mobile Banking Trojan Spreads to the U.S. via Texts mrtrout 0 886 10-31-2020 , 09:51 AM
Last Post: mrtrout
  Beware the sick ‘coronavirus scam’ email that lets crooks hijack your gadgets sidemoon 0 1,483 02-01-2020 , 05:22 PM
Last Post: sidemoon

Forum Jump:


Users browsing this thread: 1 Guest(s)