PayPal has generally been very good about security, even going so far as to warn users upon practically every visit to the site to never share their password with anyone. However, this latest scam involving PayPal could fool even the most clued-in of Internet users.
The scam arrives in your inbox appearing as an email from PayPal support. Here's how it reads (all spelling, punctuation and grammar errors were present in the original email):
Subject: Your Paypal.com Account is on HOLD
Date: Wed, 1 May 2002 08:48:51 +0500
We regret to inform you that due to system failure we have lost our backups of all accounts, so most of accounts are on HOLD status, including yours, if you want to continue our service without any trouble, then you are advised to please go to following Paypal.com page and enter your information, so that we can update your account information.
Please go to: http://www.paypal-inc.com (New window will open)
If you do not want to enter information, then your account will be automatically DELETED after 3rd May 2002
We really appreciate your help in this mater.
David JohnHead Customer Support Department
I performed a WHOIS of the domain in the link itself (notice it's different than the one in the text) and found that the owner of the domain co-inc.com is based in Hong Kong. If you follow this link, you'll notice that the page is a very close duplicate of PayPal's home page. In fact, the scam artists simply saved PayPal's homepage using Internet Explorer's "Save complete webpage" feature, put the images up on a Brinkster.com account, and changed the layout of the fake page slightly to give their own login form more prominence. Any unsuspecting visitor would unknowingly be sending their information to these scammers who are bound to transfer any funds they find to another account.
Just goes to show that we should all pay very close attention when dealing with these matters online.