Home > Cyber News > Ransomware Goes Phishing to Steal PayPal Credentials
CYBER NEWS

Ransomware Goes Phishing to Steal PayPal Credentials

by   |  Last Update:  |  0 Comments  


Ransomware is usually after one thing only, and that’s encrypting the victim’s data and extorting payment for its decryption. However, a new piece of ransomware which is still in a development stage adds something else to its malicious activity – a PayPal phishing page.




The ransomware in question is not only attempting to encrypt the user’s data but also to harvest their PayPal credentials.

Ransomware Utilizes Phishing Technique

The ransomware, which was discovered by MalwareHunterTeam, is not an advanced piece but it does include a cleverly created ransom note. The ransom note gives the victim the option to choose their payment method – through a Bitcoin address and via PayPal. This may have been done to make the payment method look easier to users who are not familiar with Bitcoin.

As it turns out, choosing PayPal is not a good idea as the victim is taken to a phishing page smartly crafted to steal PayPal’s login credentials:

As you can see, the phishing page is quite convincing and it resembles PayPal quite a lot. However, a closer look shows that any submitted information won’t be sent to the official website of the service but to https://ppyc-ve0rf(.)890m(.)com/s2(.)php. The phishing page also shows another form that is attempting to steal other personal details from the unsuspecting victim.

Related: [wplinkpreview url=”https://sensorstechforum.com/paypal-phishing-scams-avoid/”]PayPal Phishing Scams – How to Avoid Them

Interestingly, once all the necessary info has been shared with the phishers, the phishing page says that the account has been unlocked and redirects the victim to the actual PayPal login page.

This is yet another example of cybercriminals getting smarter in their ways to trick victims into revealing personal information, while also encrypting all of their files. Perhaps we will witness more innovative approaches to the well-known ransomware threat in 2019.

Milena Dimitrova

An inspired writer and content manager who has been with SensorsTechForum since the project started. A professional with 10+ years of experience in creating engaging content. Focused on user privacy and malware development, she strongly believes in a world where cybersecurity plays a central role. If common sense makes no sense, she will be there to take notes. Those notes may later turn into articles! Follow Milena @Milenyim

More Posts

Follow Me:
Twitter

Related posts:
  1. PayPal Phishing Scams – How to Avoid Them (Update November 2019) SIDENOTE: This post was originally published in February 2018. But...
  2. Fake PayPal Pages Part of Financial Phishing Scams Increase Malware researchers continue to report fake web pages of the...
  3. How to Remove Phishing Scams in 2021 This article has been created in order to help you...
  4. PayPal Virus and E-mail Scams – How to Remove Them from Your PC This article has been created in order to explain what...
  5. New PayPal Phishing Scheme Everyone who uses PayPal service for their online payments has...
  6. TIO Networks, Company Acquired by PayPal Suffers Data Breach PayPal is one of the many big, multi-national companies that...
  7. PayPal Patched a Scary Remote Code Execution Bug It’s never good news when vulnerabilities are found in widely...
  8. Custom Windows 10 Themes Can Be Abused To Steal User Credentials A security researcher has discovered that Windows 10 themes can...

Leave a Comment

Your email address will not be published. Required fields are marked *

This website uses cookies to improve user experience. By using our website you consent to all cookies in accordance with our Privacy Policy.
I Agree