PayPal users based in the UK are being targeted with a spoofed PayPal email offering a reward for participating in a "new survey program," warns Malwarebytes.
Extremely well-made fake notifications claiming the recipients' PayPal transaction was declined are doing rounds and trying to trick users sharing personal and financial information.
Analysts with UK-based Internet research firm Netcraft have discovered a considerable number of fake SSL certificates in the wild, created to impersonate banks, social networks, payment and ecommerce providers, and so on.
The number of phishing campaigns increased by more than 20 percent in the third quarter of 2013, with crimeware attacks evolving and proliferating, according to the APWG.
A very convincing phishing attempt aimed at harvesting users' Google account credentials has been spotted by a security researcher (click on the screenshot to enlarge it): The email takes the form of a notice from Google, saying that a suspicious sign-in attempt has been prevented, and urging users to check the account activity.