Re: PayPal Fraud...?
On Sep 13, 2008, at 9:33 AM, Mel wrote: --- On Fri, 9/12/08, Carl Nygren [EMAIL PROTECTED] wrote: From: Carl Nygren [EMAIL PROTECTED] Subject: PayPal Fraud...? To: G3-5 List g3-5-list@googlegroups.com Date: Friday, September 12, 2008, 10:31 PM Hello all, I was going to log on to PayPal now, but a site popped up asking for name, address, credit card number, CVV2, date of credit card expiry, bank account info, and Social Security Number. snip So what I'm trying to ask here is: has anyone else outside the States run into this? Is it a scam or is PayPal going nuts? Carl It is most likely a scam. In your instance, if you were going to log onto PayPal, just do so and ignore what the alleged PayPal site wants from you When in doubt, don't give information to anyone who asks you unless you know them. NO!!! He was at a fake site. If he logged on from there, he has given them his paypal account information. Whenever in doubt, close your current browser tab or window (to be extra safe or paranoid, quit and relaunch your browser), create a new window or tab and manually type in the address you were going to. Mel PS: I gave up on PayPal over five years ago for similar reasons that have displeased you. That is up to you, but it is not paypals fault. They are just an easy target for the scammers who know that it is always September on the net and are looking for the easily fooled newbies and careless experienced users. Have you also given up prescription drugs because of all the fake sites and spam? Len --~--~-~--~~~---~--~~ You received this message because you are subscribed Low End Mac's G3-5 List, a group for those using G3, G4, and G5 desktop Macs - with a particular focus on Power Macs. The list FAQ is at http://lowendmac.com/lists/g-list.shtml and our netiquette guide is at http://www.lowendmac.com/lists/netiquette.shtml To post to this group, send email to g3-5-list@googlegroups.com To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/g3-5-list?hl=en Low End Mac RSS feed at feed://lowendmac.com/feed.xml -~--~~~~--~~--~--~---
Re: PayPal Fraud...?
I didn't advise logging on to that site but initiating a new log on independent of that apparent scam. You've either misread my intent or I wasn't clear enough. As for but it is not paypals fault. - Good grief. How you inferred from what I wrote that is was PayPal's fault is beyond my ken. I referred to I gave up on PayPal over five years ago for similar reasons that have displeased you. not to PayPal itself. The key object is not PayPal but the similar reasons that have displeased you. Mel --- On Sat, 9/13/08, Len Gerstel [EMAIL PROTECTED] wrote: From: Len Gerstel [EMAIL PROTECTED] Subject: Re: PayPal Fraud...? To: g3-5-list@googlegroups.com Date: Saturday, September 13, 2008, 7:17 AM On Sep 13, 2008, at 9:33 AM, Mel wrote: --- On Fri, 9/12/08, Carl Nygren [EMAIL PROTECTED] wrote: From: Carl Nygren [EMAIL PROTECTED] Subject: PayPal Fraud...? To: G3-5 List g3-5-list@googlegroups.com Date: Friday, September 12, 2008, 10:31 PM Hello all, I was going to log on to PayPal now, but a site popped up asking for name, address, credit card number, CVV2, date of credit card expiry, bank account info, and Social Security Number. snip So what I'm trying to ask here is: has anyone else outside the States run into this? Is it a scam or is PayPal going nuts? Carl It is most likely a scam. In your instance, if you were going to log onto PayPal, just do so and ignore what the alleged PayPal site wants from you When in doubt, don't give information to anyone who asks you unless you know them. NO!!! He was at a fake site. If he logged on from there, he has given them his paypal account information. Whenever in doubt, close your current browser tab or window (to be extra safe or paranoid, quit and relaunch your browser), create a new window or tab and manually type in the address you were going to. Mel PS: I gave up on PayPal over five years ago for similar reasons that have displeased you. That is up to you, but it is not paypals fault. They are just an easy target for the scammers who know that it is always September on the net and are looking for the easily fooled newbies and careless experienced users. Have you also given up prescription drugs because of all the fake sites and spam? Len --~--~-~--~~~---~--~~ You received this message because you are subscribed Low End Mac's G3-5 List, a group for those using G3, G4, and G5 desktop Macs - with a particular focus on Power Macs. The list FAQ is at http://lowendmac.com/lists/g-list.shtml and our netiquette guide is at http://www.lowendmac.com/lists/netiquette.shtml To post to this group, send email to g3-5-list@googlegroups.com To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/g3-5-list?hl=en Low End Mac RSS feed at feed://lowendmac.com/feed.xml -~--~~~~--~~--~--~---
DNS server exploit (was Re: PayPal Fraud...?)
At 10:31 PM -0700 9/12/08, Carl Nygren wrote: Hello all, I was going to log on to PayPal now, but a site popped up asking for name, address, credit card number, CVV2, date of credit card expiry, bank account info, and Social Security Number. What bothers me is a) Why would PayPal ask for this, and b) I live in Sweden and I am a Swedish citizen. :) I do not have a Social Security Number - since I do not live in the US. They didn't. See below. I did not submit any info at all. This is good. I did however send an email to PayPal asking how exactly they are expecting me to fill out this form. This could be worse than spam. If you typed the address in your browser, it's probably DNS Cache poisoning. (if you followed a link in an email, it probably was a common phish and not what I describe below.) In early August a security hole in the Domain Name System (the traffic cop part of the internet that changes the name you type in to your browser such as 'paypal.com' into an IP address of a specific machine) was discovered. Not all domain name servers have been fixed yet, though patches exist for most of them. The exploit involves taking advantage of the fact that Domain Name Servers typically do not change the port they talk on with each new query. As a result, it becomes possible for someone to hit a domain name server with requests in a way that allows them to 'piggyback' a payload of bogus data which gets cached along with the real stuff. (I'm not going into the details here, for obvious reasons). The patch causes the server to assign ports in a random sequence, which greatly reduces but does *not* eliminate the threat. Using such a technique someone could hack a DNS server such that a legitimate request for the location of www.paypal.com by someone using that server (ie, a user like you) would point to their phishing server. To test whether the DNS server you use is safe from threats of this type, use the DNS tester at http://www.doxpara.com/?p=1162. Everyone should perform the test. If your DNS server(s) don't pass the test, contact your ISP and demand at least one that does. For more info, see http://support.menandmice.com/jforum/posts/list/65.page and follow the links. -- Bill Christensen http://greenbuilder.com/contact/ Green Building Professionals Directory: http://directory.greenbuilder.com Sustainable Building Calendar: http://www.greenbuilder.com/calendar/ Green Real Estate: http://www.greenbuilder.com/realestate/ Straw Bale Registry: http://sbregistry.greenbuilder.com/ Books/videos/software: http://bookstore.greenbuilder.com/ --~--~-~--~~~---~--~~ You received this message because you are subscribed Low End Mac's G3-5 List, a group for those using G3, G4, and G5 desktop Macs - with a particular focus on Power Macs. The list FAQ is at http://lowendmac.com/lists/g-list.shtml and our netiquette guide is at http://www.lowendmac.com/lists/netiquette.shtml To post to this group, send email to g3-5-list@googlegroups.com To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/g3-5-list?hl=en Low End Mac RSS feed at feed://lowendmac.com/feed.xml -~--~~~~--~~--~--~---
