Crooks are hard workers, working even on weekends.  PayPal was the target this Saturday.

Jesus R. Distilling?  Hmm.  This one looks muted and don't even use the PayPal brand power.  The stick is 'attempt of unauthorized penetration'.  More sophisticated attempt could involve actually triggering a real PayPal notification and then weaving into the message exchange with a similar looking From address and appearance.

BTW, the link above goes to:

The crook is trying to take advantage of the URL display bug that Microsoft recently patched.  Obviously, SR SkinCare, a legit site, was penetrated and enslaved into relaying PayPal passwords to some other destination.  I will give them a call on Monday.  Maybe they will give me a free skincare session for delivering the bad news.  Heh.

I think it would be informative to talk to one of the skilled phishers.  If you are such a person and not a clueless newbie, please contact me via e-mail or through blog comments.  Don't worry about me tracking you down because I am more interested in getting the inside stories and how the numbers work.  Besides, If you know what you are doing, you shouldn't have any problem avoiding being traced.

Update:

I had to replace the URL hack above with an image because the text version was triggering some anti-virus software.  How are we suppose to discuss phishing with overly sensitive anti-virus hounding us?