in Meddling

Spellcheck: a phisher’s best friend

If you’re going to the trouble of faking a PayPal email and spamming the universe with it, at least run it through a spelling checker before sending it. Typos (and random exclamation points) highlighted:

Date: Tue, 11 Dec 2007 10:05:20 -0600
To: markt
Subject: Security Center Suspicios Activity – Action requierd
From: “PayPal. Inc.”
Reply-To:

Security Center

128-bit encryption

At PayPal, we want to increase your security and comfort level with every transaction. From our Buyer and Seller Protection Policies to our Verification and Reputation systems, we’ll help to keep you safe.

We recently noticed an attempt to log in to your PayPal account from a foreign IP address and we have reason to belive that your account was used by a third party without your authorization.

If you recently accessed your account while traveling, the unusual log in attempts may have been initiated by you. Therefore, if you are the rightful account holder, click on the link below to log into your account and follow the instructions.

https://www.paypal.com/us/cgi-bin/webscr?cmd=_login-run

If you choose to ignore our request, you leave us no choice but to temporarily suspend your account.
!
If you received this notice and you ! are not the authorized account holder, please be aware that it is in violation of PayPal policy to represent oneself as another PayPal user. Such action may also be in violation of local, national, and/or international law. PayPal is committed to assist law enforcement with any inquires related to attempts to misappropriate personal information with the intent to commit fraud or theft. Information will be provided at the request of law enforcement agencies to ensure that impersonators are prosecuted to the fullest extent of the law.

Thank you for your patience as we work together to protect your account.

Sincerely,
PayPal Account Review Department
PayPal, an eBay Company