As always, the most important rule of thumb is to NOT click on the link provided in an e-mail especially if they are asking for some login credentials. Just access the site directly by typing in the URL in your web browser.
Aside – Not sure if the mAssage part is a typo or intended to be humor. I guess you should at least get something back if they take your money. 😉
Customers of Internet money transfer service PayPal are being targeted in an aggressive email phishing scam that is masquerading as an urgent security warning, a familiar scam for PayPal customers.
Users of PayPal are receiving an email message from them that claims to be an urgent security warning. Those who follow the HTML link in the email are being redirected to a convincing facsimile of the PayPal website which claims that the user’s access is limited and presents them with a form asking for various banking information, including your bank name and credit card information, to remove the limitations, according to a post at Naked Security.
Along with the PayPal imitation page is the following massage:
For those who make the unfortunate decision of filling out this form and following the directions in the above message, you are, in essence, spoon-feeding your financial information to some unknown fraudster.
This scam falls in with a growing trend of attacks targeting online payment services.
The easiest and most reliable way to separate phishing scams from real email warnings is to go directly to the site that supposedly sent you the email–not following a link in the email–and logging in directly. If the site really has a security message for you, you’ll be able to read it via the PayPal messaging system.