All the latest UK technology news, reviews and analysis
|
|
|
07 Jul 2006
Sophos has warned of a new phishing email that tries to trick PayPal users into calling a phone number and revealing their credit card details.
The email purports to come from PayPal, and claims that the recipient's account has been the subject of fraudulent activity.
Unlike normal phishing emails, the message contains no internet link or response address. Instead, the recipient is urged to call a US phone number and verify their details.
When the number is dialled, users are greeted by an automated voice saying: 'Welcome to account verification. Please type your 16-digit card number.'
"Although it's an American telephone number, the fact that PayPal is used globally means that anyone could be tricked into making the call," said Graham Cluley, senior technology consultant at Sophos.
Cluley said that the scam highlights a problem for online companies in how they communicate with their customers.
Many users are learning not to click on links in unsolicited emails. But an email that includes a phone number may not arouse suspicion.
"How many would know whether a phone number for a website is genuine or not? " said Cluley.
"As hackers get smarter, we are likely to see an increase in cases where they harvest messages from corporate switchboard systems to sound even more like the legitimate company."
Latest stories from Security
Related articles
Related jobs
Poll
What is the most important IT priority for your company this year?
Connect with V3.co.uk
This paper focuses on a series of best practices and techniques for development teams looking to improve their software development processes
Why good data management at all levels is essential in the modern business (video, 6mins)
Software Development Manager - London, 12 Month Contract...
PROCUREMENT AND COMMERCIAL MANAGER BERKSHIRE...
Hardware Engineer / Field Service Support Analyst £16...
Infrastructure / Implementation Support Engineer (Windows...
Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.
Do you agree?
... Do people never realise how stupid they're being?
So despite all the warnings given by PayPal (PayPal will never ask for your account details or password), people still fall for these remarkably low-IQ scams. Perhaps people need to answer a general knowledge question before their computer will connect to the Internet... If their IQ is lower than 100, it won't let them connect for five minutes and after that it'll ask them another question. Oh man, that's such a good idea - ®© me! So GET your hands off that idea :P
Posted by: Christopher Woods 10 Jul 2006