The malware double extortion website is again up, with new victims and a message: “Despite your hopes, we are with you again”.
New PayPal phishing campaign on the wild. The lure is a supposed unusually activity on the victim’s account. The goal: steal PII and sensitive data
New PayPal phishing campaign on the wild. It has been discovered by the cybersecurity expert MalwareHunterTeam. The lure a supposed unusually activity on the victim’s account, denounced with a mail or a sms. In the message there is a link to “secure the account” to prevent any unauthorised access. It directs the user on a fake login page. It asks just user and password, as the legit one. Then, a message appears asking to “secure the account” via clicking on a button. This led to another page in which user has to digit full name, date of birth, address, country, zip, phoine number and official identity. The next stap are the credit cards and bank account details. Finally, a message appears confirming that the account has been “Activated”. But everything is fake. The domain’s owner is not PayPal, butha third party with no links to the company. The objective, in fact, is to steal user’s PII and sensitive data.