I just got to me what is a new and novel form of paypal phishing, that could easily target less inclined people.<p>Instead of sending a phishing email to me directly, they set up a forwarding e-mail that forwards to my real account.<p>This means they don't have to fake paypal, paypal is sending real emails to the email under their control which then gets forwarded to me. And all the DKIM/SPF stuff seem to check out (google even flags it as important, even though it's "To: " header is not to any email they should associate with mine.<p>what's worse, since this is a "Billing Request" email, when you click through, you are greeted with a<p>"We'll link e-mail_addr@naga99g-186.com to your PayPal account when you log in."<p>It has the standard "Fraud Alert: Didn't make this order? Call at 1-888-341-5602". type message to try and get people to call in and manipulate them from there as well.<p>I'm semi impressed, but also figure worth raising a flag of warning to others that might have family members easily taken in by this.
Article about this: <a href="https://news.ycombinator.com/item?id=42649784">https://news.ycombinator.com/item?id=42649784</a>