a phishing attack threatens to empty users’ accounts in France

PayPal is the victim of a new phishing campaign. As usual, hackers take over the payment service interface to trick users. By pretending to make your account more secure, operators hope to recover your bank details.

Credits: PayPal

After the phishing attack against Netflix at the end of July and the fake Lidl vouchers, it is PayPal’s turn to fall victim of a large phishing operation. The operators who hide behind this campaign have adopted an operating method that has proved its worth: fake emails supposedly from PayPal, adopting the same graphic charter as the payment service.

A fake Paypal well done, but not perfect

An uninformed user could easily fall into the trap, the illusion being quite well realized. The colors are identical, the logo and the controls are in their place. Only the different texts differ here from the original. Note for example that the field ” Email or mobile number ” on the official website has been replaced by ” E-mail adress “, while the ” Opening an account “ became ” Registration ».

On the other hand, it is clear that this fake site was modeled on the English version of PayPal, since we find a ” Contact Us » instead of the traditional ” Contact us ”. Mainly, this is the ” Privacy ” which makes you smile, literal translation of the term ” Privacy » in English. These few hiccups can put you off.

Unsurprisingly, the hackers’ goal is to steal your bank details on the pretext of a security problem: ” Dear customer, your account is restricted, you must confirm your identity before your account is closed: https://ppl-clientsecure.com ”, is it written on the various texts sent by hackers.

Read also: PayPal – watch out for this phishing attack that can empty your bank account

After PayPal credentials, bank details

Once the victim has logged into their account via the fake login page, hackers take deception to the next level. ” We noticed unusual activity […] We need your help to secure your account to prevent unauthorized access. For your security, your account may have certain limitations if the information provided is not correct .. ”.

In case you are wondering, both endpoints are hackers error. At this precise moment, the hackers already have in their possession your PayPal credentials. They will now collect more data by asking you to fill out a form : name, postal address, telephone number, and bank details. All to secure your account of course.

You are then redirected to another fake webpage through which hackers congratulate you and assure you that your account is now protected from fraudulent schemes. In a final attempt to cover their tracks, the victims are then redirected to the official PayPal website.

Read also: Coronavirus – Google detects more than 18 million malware and phishing emails per day

What if I fell for it?

There are several options available to you in the event that you are caught. The important thing is reactivity, react quickly so as not to give hackers time to make purchases without your knowledge, for example. Here are some indications:

  • If you have given your credit card numbers, oppose le as quickly as possible by phone through the services of your bank
  • If you have given your PayPal credentials, change them immediately and choose a strong password
  • If you gave your email address, you may receive other fraudulent emails, be careful
  • Systematically activate double-authentication or 2FA, to protect yourself from intrusions in the event of password theft

As a reminder, Paypal has recently integrated payment in four installments on its platform. This ease of payment has long been claimed by users.

Source: Cyberwar

Leave a Comment