Beware PayPal Users! Hackers are using new Phishing Trick!

Hackers are using a new type of Phishing Trick to steal the credit and debit card details of PayPal Users. Phishing is very old and high profitable technique for hackers to target the victims. Hackers are using same phishing techniques but they are changing its way of use. A malware researcher and security expert reported about this phishing attack. The online name of that researcher is “@dvko1uk”.

How Hackers are Targeting Victims?

Hackers are redirecting PayPal users to a promised PayPal website. This website looks like original PayPal website but when they fill their details, it goes on the server which is in the control of hackers. Hackers are using this trick with the help of JavaScript. Hackers are targeting victims through Emails. May be, Hackers are getting Email ID’s of people from Dark Web. No Doubt, a number of Email details are available on the Dark Web after some major data breaches such as Tumblr, LinkedIn and MySpace.

Logic behind this Attack?

Hackers are using a promised PayPal Website. Hackers are Using “Continue” button on promised website. With the help of hidden redirection JavaScript, Hackers could get the details of victims when he or she will click on this “Continue” button. In the genuine PayPal website, there is not any “Continue” button. There is only a “Finish” button in the end of genuine PayPal website. Average users could not detect these type of situations, therefore they are clicking on “Continue” button and passing their information to hackers.

“The JavaScript used by hackers, contains special type of coding which could intercept the interaction of victim’s with official PayPal website. Hackers are sending link of this website to victims. When victim clicks on that link, he will go to genuine PayPal website. After that when he or she will fill details, then JavaScript will do its work and it will redirect the user to phishing page.”

Tips for PayPal Users