669676665 gmolino@gmail.com

Según denuncia la Asociación de Internautas, el phising ha evolucionada hacia sitios como Paypal, dejando de lado a los bancos (al menos de momento).
El método usado es el clásico, la recepción de un correo electrónico;

************** INICIO ***************
From: PayPal INC.
To: xxxx@xxx.xxx
Sent: Sunday, October 09, 2005 1:49 PM
Subject: Notification of Limited Account Access (Routing Code:C840-L001-Q190-T1812)

Dear PayPal Member,
PayPal is committed to maintaining a safe environment for its community of buyers and sellers. To protect the security of your account, PayPal employs some of the most advanced security systems in the world and our anti-fraud teams regularly screen the PayPal system for unusual activity.
Recently, our Account Review Team identified some unusual activity in your account. In accordance with PayPal’s User Agreement and to ensure that your account has not been compromised, access to your account was flagged. Your account will remain flagged until this issue has been resolved. This is a fraud prevention measure meant to ensure that your account is not compromised.
In order to secure your account and quickly restore full access, we may require some specific information from you for the following reason:
Our system requires further account verification.
Case ID Number: PP-056-245-481 We encourage you to log in and restore full access as soon as possible. Should your account remain flagged for an extended period of time, it may result in further limitations on the use of your account or may result in eventual account closure.
————————————————————-
Please click on the link below to log in and restore full access to your account.
Click here to activate your account
————————————————————-
Thank you for your prompt attention to this matter. Please understand that this is a security measure meant to help protect you and your account. We apologize for any inconvenience.
Sincerely,
PayPal Account Review Department
PayPal Email ID PP562

************** FINAL ***************

En el correo nos sugiere que verifiquemos nuestra cuenta de usuario de PayPal, presionando sobre el link que viene en el correo electrónico, este link nos envía a una web falsa que emula ser la empresa PayPal.
El método usado no es nuevo, pero los cibercacos en esta web falsa usan una nueva variante, emular otra ventana de dirección del navegador donde contiene la url verdadera de la empresa PayPal, de esta manera los cibercacos hace creer a la posible victima que estan en la web original.

Las web falsas son las siguientes;

http://210.178.147.130/images/paypal/sysdll.php

http://210.178.147.130/images/paypal/login.html

http://210.178.147.130/images/paypal/protect.php

http://210.178.147.130/images/paypal/update.php

http://juvenia-swiss.com/images/update.html

Como siempre la recomendación es NO HACER CASO DE CORREOS QUE NOS SOLICITEN DATOS PRIVADOS.

Mas información y pantallazos en esta direción