Phishing: Compromised Account (PayPal)

Posted by on Thursday, February 23rd, 2012  |  23,297 views

We received another suspicious email that spreads a phishing URL:

Phishing Email

The A HREF link redirects to the phishing URL:

hxxp:// restore.account.sysadmin-center .com/paypal/restore/webscrcmd=_login-run/webscrcmd=_account-run/confirm-paypal/restore=_paypal-account/updates-paypal/

Email header details:

Received: from main.pensativo.nl (main.benefiet.eu [141.138.139.44])
Received: from [202.175.132.8] (helo=administrator) by main.pensativo.nl with esmtpa (Exim 4.77)
From: "Paypal Department"
Subject: Compromised Account
Date: Thu, 23 Feb 2012 15:55:40 +1300
To: undisclosed-recipients:;
Posted by on Thursday, February 23rd, 2012 at 11:11 am and filed under Phishing, Security News with tags , , . You can skip to the end and leave a response. Pinging is currently not allowed.

Random Posts

Previous Posts