Warning - Phishing or Fake PayPal Email and Web Page July 2013

The email message below with the subject: "Incorrect login", is a phishing PayPal scam designed to steal your PayPal user name and password. The email message tries to trick the recipient into visiting a phishing or fake PayPal website, designed to look exactly like the legitimate PayPal.com website. On the phishing website, if the recipient enters his/her PayPal's user name and password, it will be sent to the scammers behind this scam.

Warning - Phishing or Fake PayPal Email and Web Page July 2013
Advertisement

The PayPal Phishing Email

From: PayPal no-reply.pay-pal@incorrect.se
Date: 2013/7/5
Subject: ID:7W263786RM05513031 - Incorrect login.

Dear Customer,

Within PayPal latest security checks, we recently discovered that today there were 3 incorrect login attempts to your account.

For your safety, PayPal set your account status to limited. For your account status to get back to normal, you will have to Sign In correctly at: https://www.paypal.com.cgi.bin-login/webscr?cmd=_login-submit

Due to our latest fraud attempts, the following IP adresses were recorded:

Invalid login from:

*.*.11.113 dells.dk
Invalid login from:
*.*.121.127 bitssh.gr
Invalid login from:
*.*.130.131 net.il

Protect Yourself from Fraud: Don't send money to someone you don't know. Find out how to help safeguard your transactions and your personal information to avoid online fraud.

This message is mandatory, if you do not complete it in less then 24 hours, your account may get deactivate.

Copyright 1999-2013 PayPal. All rights reserved.

This email message was not sent by PayPal and you should not follow the instructions in it. The email message appears to have been sent from an email account at the website "incorrect.se" (no-reply.pay-pal @incorrect.se). But, you can never rely on an email address because it can be spoofed or tampered with.

The link in the email message, which appears to go to the PayPal website, actually goes to the PayPal phishing or fake web page below, when clicked on:
http://www.castrolaboreiro.com/pp/paypal.com/us/cgi-bin /webscr.htm?cmd=_login-run

phishing or fake paypal website www.castrolaboreiro.com

Do not enter your user name and password on this website. And, never click on a link to sign into any of your online accounts. Always go directly to your online accounts, by typing the website address in your web browser address bar and clicking the “Go” button or pressing the "Enter" key on your keyboard.

For example:

If you want to sign into your PayPal account, type "www.paypal.com" in your web browser address bar and click the "Go" button or press the "Enter" key on your keyboard. Once you are on the website: "www.paypal.com", sign in from there or navigate to the sign-in page.

Always ensure that your web browser address bar looks like the image below when you are visiting www.paypal.com website:

web browser address bar www.paypal.com

If you have already entered your PayPal user name and password on this website, please change your PayPal password right now.

Here are instructions for changing your PayPal password

  • Log in to your PayPal account.
  • Click My Account at the top of the page.
  • Click Profile at the top of the page.
  • Click Change beside Password/Security questions.
  • Select Password.
  • Click Edit. You may be required to confirm your account information.
  • Enter your current password and your new password.
  • Click Save
Check the comment section below for additional information, share what you know, or ask a question about this article by leaving a comment below. And, to quickly find answers to your questions, use our search Search engine.

Note: Some of the information in samples on this website may have been impersonated or spoofed.
Would you share this article with others?  +

DonateHelp maintain Online Threat Alerts (OTA).

Comments, Questions, Answers, or Reviews

Comments (Total: 6)

To protect your privacy, please do not post or remove sensitive information in or from your comments, questions, or reviews. NB: We will use your IP address to display your approximate location to other users. That location is not enough to find you.

Your comment, answer, or review will be set as anonymous because you are not signed in. An anonymous comment, answer, or review cannot be edited or deleted, therefore, review it carefully before posting. Sign-in.

The comments, reviews or answers below do not necessarily reflect the views of Online Threat Alerts (OTA).

  • September 16, 2014 at 9:13 AM by an anonymous user from: Edgware, England, United Kingdom

    Got this email twice within a few hours of each other!

    -

    Hello

    Within PayPal latest security checks, we recently discovered that today there were 2 incorrect login attempts to your account. For your safety, PayPal set your account status to limited.to get back to normal, you will have to Sign In correctly:

    вÐ?Ñ? Due to our latest fraud attempts, the following IP adresses were recorded:

    вÐ?Ñ? Invalid login from: .

    вÐ?Ñ? *.*.34.78

    вÐ?Ñ? *.*.12.93

    вÐ?Ñ? Login to confirm your information.Relog in your account now

    -

  • September 15, 2014 at 6:10 PM by an anonymous user from: Hobart, Tasmania, Australia

    I have received two of these emails, one at 1:15am and the other at 8:47am. My initial reaction was "oh no, someone is trying to access my account".

    However I know to NEVER click on links from emails like this. I googled it and quickly discovered it was a scam.

  • September 15, 2014 at 4:47 PM by an anonymous user from: Bagnolet, Ile-de-France, France

    How do they know my email address?

    • September 16, 2014 at 8:56 AM by info

      Cyber-criminals use email bots to search the internet for email addresses. They also use malicious programs to infect their victims' computers and search them for email addresses.

      It is also possible that you may have registered with a phishing or other malicious websites unintentionally using your email address.

  • January 27, 2014 at 6:40 PM by an anonymous user from: Auckland, New Zealand

    This is the latest one today 28 Jan 2014:<br/>-<br/><br/>Hello <br/><br/>Within PayPal latest security checks, we recently discovered that today there were 3 incorrect login attempts to your account. For your safety, PayPal set your account status to limited.to get back to normal, you will have to Sign In correctly :<br/><br/>Due to our latest fraud attempts, the following IP addresses were recorded:<br/>Invalid login from: .<br/>*.*.11.113 dells.dk<br/>*.*.121.127 bitssh.gr<br/><br/>Login to confirm your information. Relog in your account now.<br/><br/>I dont even have a paypal account so they are trying hard.

  • October 10, 2013 at 5:05 PM by an anonymous user from: London, England, United Kingdom

    I think there is now a new scam similar to the one mentioned above. I received this today. <br/><br/>Dear PayPal member, <br/><br/>PayPal is constantly working to ensure security by regularly screening the accounts in our system.We recently reviewed your<br/> account, and we need more information to help us provide you with secure service.Until we can collect this information, your access<br/> to sensitive account features will be limited. We would like to restore your access as soon as possible, and we apologize for the<br/> inconvenience. <br/><br/><br/>why is my account access limited?<br/><br/><br/>Your account access has been limited for the following reason(s):<br/><br/> We have reason to believe that your account was accessed by a third party. We have limited access to sensitive PayPal account<br/> features in case your account has been accessed by an unauthorized third party. We understand that having limited access can be an<br/> inconvenience, but protecting your account is our primary concern.<br/><br/>here to remove your limitation

Comments Show More Comments (5)

Write Your Comment, Question, Answer, or Review

Recommendation / Advertisement
Warning - Phishing or Fake PayPal Email and Web Page July 2013