Information Security News
mailing list archives
Scam artist copies PayPal Web site
From: William Knowles <wk () C4I ORG>
Date: Sat, 22 Jul 2000 00:15:18 -0500
Online-auction payment service PayPal.com has been the victim of an
elaborate scam. Some of the site's 2.6 million users, who keep
accounts with the service to facilitate their online-auction
purchases, were tricked into linking to a site called PayPai.com.
PayPai's page has the exact same design as PayPal's and, adding to the
confusion, spells its URL with a capital "I" so that users have
trouble telling the difference between PayPaI.com and PayPal.com.
PayPai entices customers with an e-mail saying a bonus will be posted
to their PayPal account. Users who believe the e-mail and follow the
link to PayPai will expose their username and password to the scam
artist when they log in. The scam artist could, in theory, use that
information to clear out PayPal accounts or even gain access to users'
bank or credit card accounts.
As of now, however, no one has reported any money actually having been
stolen. Network Solutions has traced the scam site to a South Ural,
Romania-based company called Birykov Inc. (MSNBC.com, 21 July 2000)
ISN is hosted by SecurityFocus.com
To unsubscribe email LISTSERV () SecurityFocus com with a message body of
- Scam artist copies PayPal Web site William Knowles (Jul 24)