A Spoof email can be a major problem for
unsuspecting Internet users. Claiming to be sent by well-known companies
like eBay, PayPal, CitiBank, Bank of America and others, these emails ask
consumers to reply with personal information, such as their credit card
number, social security number or account password. Their propose is to
STEAL your account information, and sell it or use it as they wish.
These deceptive emails are called "Spoof Emails" because they fake the
appearance of a popular Web site or company in an attempt to commit
identity theft. Also known as "hoax" or "phisher" (Pronounced Fisher)
emails, this practice is occurring more and more frequently throughout the
online world.
Since I help educate people about them, I am a target and constantly
bombarded with sometimes up to 10 spoofs a day being sent to my email.
The most important thing to remember is to NEVER CLICK ON ANY OF THE LINKS
IN THE EMAIL MESSAGE.
Reporting Spoof emails is as easy as 1-2-3.
If you have any doubt whether an email is really from eBay, here's how to
report it:
1. Forward the message to
spoof@ebay.com or
spoof@paypal.com .
2. Don't alter the subject line or
forward the message as an attachment
- doing so prevents them from investigating it further.
3. Once you have forwarded the email,
you can then delete it from your email account.
Normally within a few hours of submitting the spoof email to eBay or
PayPal, they will send you an email explaining that it was a spoof and
they will remind you of the different ways to protect yourself.
Warning Signs of a Spoof Email
1. Sender's Email Address
Spoof email may include a forged email address in the "From" line - Some
may actually be real email addresses that have been forged. (From:
billing@ebay.com; From: eBayAcctMaintenance@eBay.com; From:
support@ebay.com).
The "From" field of an email can easily be altered - it is not a
reliable indicator of the true origin of the email.
2. Email Greeting
Many Spoof emails will begin with a general greeting such as "Welcome eBay
User" or they will refer to you by your email address instead of by your
actual name. eBay and PayPal both know your name and they will refer to
you using your first and/or last name.
3. Urgency
Claims that eBay is updating its files or accounts - Don't worry, it is
highly unlikely that eBay will lose your account information.
4.
Account Status Threat
Most Spoof emails try to deceive you with the threat that your account is in
jeopardy and you will not be able to buy or sell on eBay if you do not
update it immediately.
5.
Links in an Email
While many emails have links included, just remember that these links can be
forged too.
If you hover your mouse over the link (Don't click it) in the email, you
will normally see that the address is different than the words in the link.
Here is an example: Please go to:
www.eBay.com
6. Requests Personal
Information
Requests that you enter sensitive personal information such as a User ID,
password or bank account number by clicking on a link or completing a form
within the email are a clear indicator of a Spoof email.
If you have any doubt about the authenticity of an eBay or PayPal email,
simply open a new Web browser, type in
www.ebay.com or
www.paypal.com and perform the requested
activity.
Protect Yourself
The information here applies not only to eBay and PayPal, but
to all other sites with which you do business. These protection practices
can be applied to your bank account, your ISP account and virtually any
other online account you hold.
Here are some tips on
how to protect your account and what to do if you think you may have
responded to a Spoof email:
1. Scan for Viruses and Spyware
Frequently scan your computer for viruses and spyware and make sure your
virus software, operating system, and browser patches are up to date.
There are numerous Trojan viruses and Spy programs that can actually
record your usernames and send them to a remote address.
2. Vigilance Is the
Best Line of Defense
You should periodically check your account status to see
if there is any suspicious activity. If there is contact your provider and
report the problem.
3. Change Your Password
Frequently
If you think your account security may have been
breached, change your account password immediately.
Learn How to change your password.
Your password is the key to your eBay account. Use the following tips to
make it difficult for others to guess your password and to help keep your
account secure.
Important: eBay employees WILL NEVER ask you for your password.
| Password Tips |
Examples |
|
Do
Use a combination of at least 6 to 8 letters, numbers, and special
characters.
Use multiple words without spaces. |
Good Passwords
Beatlesfan#01
$uperman1968
im2goofy4u
bestjetpilot |
|
Don't
Do not use single words that can be found in any dictionary.
Do not use your name, your spouse's name, your pet's name,
birthday, favorite food, or any personal information that others can
easily obtain.
Do not use words or phrases that relate to eBay or your
favorite hobby.
Do not use a password that contains part of your User ID or
email address. |
Bad Passwords
rabbit
Rover (pet's name)
glasscollector
computerseller
Victor (while your User ID is victors_stuff) |
