Threat Database Viruses Mal/Phish-A


By ESGI Advisor in Viruses

Threat Scorecard

Threat Level: 80 % (High)
Infected Computers: 5
First Seen: November 7, 2011
Last Seen: November 19, 2021
OS(es) Affected: Windows

Computer users may have received an email claiming to come from PayPal, urging the recipient to protect their PayPal account's information. Despite its urgent language, ESG PC security researchers have found that this email that is circulating is part of a dangerous phishing scam and designed to obtain your personal data, is classified as Mal/Phish-A. The email involved in this phishing scam was first detected in late October and early November of 2011. It claims that unusual credit card charges were linked to the victim's PayPal account, claiming to come from the PayPal review team.

Phishing scams have been around for a long time, and people still fall for them. Of course, one should also recognize that, as Mal/Phish-A attests, criminals have gotten better at imitating legitimate emails from important companies, making their phishing scams more effective. Some security applications detect this phishing scam as Mal/Phish-A. However, ESG PC security researchers consider that the best way to avoid phishing scams such as Mal/Phish-A is to become educated and to follow your instincts when receiving an email from an unknown source. Simply knowing the existence of phishing scams such as Mal/Phish-A can do wonders for reducing the rate at which people become duped by these kinds of scams. Research has shown that about five percent of the population still falls for phishing scams such as Mal/Phish-A. While this number may not seem incredibly high, it is important to note the huge number of people online. Five percent of computer users are a huge amount of potential victims.

The first alarm that should be triggered from the Mal/Phish-A scam is the fact that this fake email from PayPal claims that you need to download an attached form. Downloading attached files in unsolicited emails is an extremely dubious practice that will almost invariably lead to a malware infection. The attached file to the Mal/Phish-A scam email leads the victim to a web page, which is a fairly good imitation of a legitimate PayPal page. However, there are a couple of mistakes in the Mal/Phish-A scam that can help you make sure that you do not fall for the Mal/Phish-A scam.

  1. The sender's email address is not associated with PayPal. The fact that Mal/Phish-A says 'from: PayPal' is not any indication that the email really comes from this online money transfer service.
  2. The domain name associated with Mal/Phish-A is Taking a minute to look up this address reveals that it has nothing to do with PayPal.


Most Viewed