I just received the most realistic PayPal scam email yet. I was immediately suspicious for two reasons: it was sent to an address that was NOT my primary PayPal address; and it said that I haven’t logged into my PayPal account for a long time, yet I had just logged in yesterday.
I noticed that it was directing me to paypalserv.com rather than paypal.com, so I looked up that domain. Here’s what I found (personal info blocked out):
Domain Name.......... paypalserv.com
Creation Date........ 2004-04-27
Registration Date.... 2004-04-27
Expiry Date.......... 2005-04-27
Organisation Name.... Jodie Schleicher
Organisation Address. 99 YYYY Street
Organisation Address.
Organisation Address. Dalton
Organisation Address. 01xxx
Organisation Address. MA
Organisation Address. UNITED STATESAdmin Name........... Jodie Schleicher
Admin Address........ 99 YYYY Street
Admin Address........
Admin Address........ Dalton
Admin Address........ 01xxx
Admin Address........ MA
Admin Address........ UNITED STATES
Admin Email.......... jodie.schleicher@sbcglobal.net
Admin Phone.......... +1.413XXXXXXX
Admin Fax............Tech Name............ YahooDomains TechContact
Tech Address......... 701 First Ave.
Tech Address.........
Tech Address......... Sunnyvale
Tech Address......... 94089
Tech Address......... CA
Tech Address......... UNITED STATES
Tech Email........... domain.tech@YAHOO-INC.COM
Tech Phone........... +1.619XXXXXXX
Tech Fax............. +1.619XXXXXXX
Name Server.......... yns1.yahoo.com
Name Server.......... yns2.yahoo.com
I called the admin phone number, and the person who answered never heard of the person mentioned, so it looks like their DNS entry has bogus info. I’ve also forwarded it to PayPal.