Phishing Example

Real Email

The email shown below appeared on Monday, Sept. 6, 2010 in many mailboxes. It purports to be from PayPal and asks the user to 'confirm that your account was not stolen'. Of course, as soon as you confirm, your account will be stolen!

Yellow highlights mark the text that the red text annotates.

If you click on the 'Verification Form', you will see the perfectly legitimate-looking web page below. Only the form submission button ('Agree and Continue') is malicious; all the rest of the links are legitimate Paypal and related links. The only way to see the target of the submission button is to read the HTML code of the page (which is something hardly anyone does!).

Last modified Mon Jan 17 16:39:10 MST 2011, RK
Stanford University Home