Attention, a new and insidious cyber attack can whitewash your PayPal account

Phishing attacks are among the most widespread threats in the digital world, with attackers constantly improving their methods to fool even the most experienced users. Recently, a new type of phishing attack targeting users of the service has been identified PayPalwhich uses unconventional techniques to gain access to victims’ accounts, warns Fortinet.

Attack mechanism

In this case, the attackers register a test domain in Microsoft 365, which is free for three months. They then create a distribution list with a name such as “Billingdepartments1(@)gkjyryfjy876.onmicrosoft.com” to which they include their victims’ email addresses. They then send a payment request to that distribution list via PayPal. The email the victim receives looks credible because passes SPF/DKIM/DMARC verificationwhich are sender authentication mechanisms.

When the victim clicks on the link in the email, they are redirected to a legitimate PayPal login page where they see a payment request. In a panic, she can log into her account, which will link her account with the attacker’s account. In this way, the attacker gains access to the victim’s account and can manipulate it according to his needs.

Why is this attack dangerous?

This type of attack is extremely insidious because it bypasses traditional phishing features. The email comes from from a trusted sourcelinks point to legitimate sites and all security checks they are fine. It’s like receiving a letter from a well-known institution with an official stamp and signature, but it’s actually written by a fraudster.

Phishing – cyber fraud in which an attacker impersonates a trustworthy person or institution in order to trick the victim into obtaining sensitive information such as login credentials, passwords, credit card information, or other personal information.

The word “phishing” is derived from the English word “fishing”, which symbolizes that the attacker “casts the bait” and waits for the victim to catch it. This term was first used in the 1990s.

You might be interested in:

How to protect yourself?

1. Beware of unsolicited e-mails: Even if the email looks trustworthy, always think about whether you expected such a message. If you have not received any service or product that you should be paying for, be suspicious.
2. Sender Verification: Check the sender’s email address. Even if it has been verified, it may contain unusual characters or domains that are not related to an official institution.
3. Don’t panic: Attackers often use panic to force you to act rashly. Before taking any action, think carefully about what you are doing.
4. Direct login: Instead of clicking on the links in the e-mail, log into your account directly through the official page of the service. This minimizes the risk of becoming a victim of fraud.
5. Education and awareness: Regularly educate yourself about new threats in the digital world. The more you know, the better you can protect yourself.

You can also discuss this article on our website AndroidForum. If you’re looking for an answer to a problem with your mobile device, app or accessory, ask in our new AndroidFore.