Threats, Cybercrime

OpenDNS tracks PayPal spoofs built off Wix.com

February 12, 2015

Multiple new phishing campaigns are leveraging Wix.com's website creation services to spoof PayPal's legitimate site design and compromise victims' credentials.

Domains, including redirectly-paypal.com and security-paypal-center.com, were registered in late January, according to an OpenDNS Security blog post. Both sites could pass for PayPal's legitimate website through their professional design. OpenDNS details five separate domains that switch up their designs to trick victims.

One of the sites, paypalinspection.com, attempts to spoof an Apple ID verification page, although Apple and PayPal are unrelated entities.

Another fake site is in Spanish, but sent to English speakers through a phishing email. In this case, some original content from PayPal servers is pulled onto the site.

OpenDNS reported the sites to PayPal and is coordinating with the company's Fraud and Abuse Department to take down the malicious spoofs.

prestitial ad