On 6/9/11, MR ZenWiz <mrzenwiz at gmail.com> wrote: > Sorry for the cross-post, and off-topic at that, but: > > This morning I received a very authentic looking email from > info.paypal.com, claiming that Paypal wanted me to update my browser. > (Really.) > > It had my name in it and all the right graphics and colors and everything. > > Except that the from site was info.paypal.com (whoever they are: hint > - not paypal.com) and the links all had long obfuscated links in them. Did the link really go to info.paypal.com or was it just a link formatted to look like it goes to info.paypal.com e.g. <a href='somedubious.domain.com>info.paypal.com</a> ? Which is the usual case. Otherwise, it would indicate that Paypal has been compromised.