A new phishing campaign has been identified that targets PayPal users with fraudulent text messages, according to TechRadar. The exploit attempts to steal a variety of sensitive user details, in addition to their PayPal credentials. Targets first receive an SMS message stating that the user’s PayPal account has been partially suspended due to suspicious activity. The user is then asked to click on a link that will enable them to verify their account. However, this link actually leads to a fake login page that allows the attacker to steal the entered login credentials. The phishing page then asks for further details, including names, addresses, and bank details, which the attacker could use for further fraudulent activity.
About the Author
The opinions expressed in this post belongs to the individual contributors and do not necessarily reflect the views of Information Security Buzz.
