I've got several e-mail messages today that look like below. I've never used PayPay (I use PayPal), but it looks like two other companies are fighting it out. Any ideas, or is this some sort of scam?
================================================================== Be aware of www.paypayINC.com, XAVIER ROY and his sons CHARLES and JULIEN! ===================================================================
In 2008 PayPay Payment system intended to sell part of its assets to XAVIER ROY. Since XAVIER ROY failed to pay purchase price, mismanaged system and company, permanently was unlawfully taking money of users to pay his expenses and expenses of his sons and was covering all illegal activities by accountant Charles Roy, we decided to cancel purchase agreement with XAVIER ROY and report his activities to FBI. Then, XAVIER ROY and his sons stole our system and made a copy which is now available at www.paypayINC.com. We do not recommend to our users to use this website which all other authorities already confirmed as a web forgery by XAVIER ROY and his sons. All his activities are already investigated and www.paypayinc.com will be soon shut down.
Thank you for understanding of this situation. PayPay team info@paypay.com www.paypay.com
jetsfan92588 said: lol-change your email address, and use a separate one to give out to sites you don't completely trust. (gmail is usually good)
That is good advice, however you should also check your "spam account" from time to time since useful emails come there too. For example, I have gotten some emails from Chinese registrars who were kind enough to warn me about domain squatters who were trying to obtain the .cn domains for my company and product names, and even gave me priority to register all those domains myself! The other time I got a very urgent email about a data leak at SunTrust bank that asked me to immediately log on and change my passwords! Imagine if I missed that email... Well, and also had a SunTrust account...
Ecuadorgr said: jetsfan92588 said: lol-change your email address, and use a separate one to give out to sites you don't completely trust. (gmail is usually good)
That is good advice, however you should also check your "spam account" from time to time since useful emails come there too. For example, I have gotten some emails from Chinese registrars who were kind enough to warn me about domain squatters who were trying to obtain the .cn domains for my company and product names, and even gave me priority to register all those domains myself! The other time I got a very urgent email about a data leak at SunTrust bank that asked me to immediately log on and change my passwords! Imagine if I missed that email... Well, and also had a SunTrust account...
ya, what i do is just forward all of my emails to my one email account (which i actually never give out to anyone)-i have like 6 or 7 different email addresses that are forwarded to that one address, and if i start getting spam, i figure out what email address its coming in from, cancel the forwarding, open up a new email account and notify people that need to have that address. gmail lets you do this pretty easily, and on your main account you can actually color code each email based on what email address it was forwarded from. i also have an account thats purely for spam. (no joke-its "my initials"spam@gmail.com) i give that to sites where i just want to download a free program and they require me to type in my email address-things like that. however, for the normal person, i think two email addresses should do-one for spam, and one that you only give out to trustworthy places
jetsfan92588 said: lol-change your email address, and use a separate one to give out to sites you don't completely trust. (gmail is usually good)The better solution is to use sub-addressing (aka plus addressing) or have individual forwarders for each online account.
Swivelguy
Senior Member
posted: Oct. 27, 2009 @ 8:09p
Hi, and thanks you for yours time. I am hoping you can post this on your blog so that others may know the great joy and experience I am having with PayPay.com. At first I was skeptical, but now that I am making money and enjoying the easy life, I know that PayPay.com is the real deal. Let me just say clearly that this is LEGIT and all of my investments at PayPay.com have paid IN FULL and made me money. Thank you and have a very nice day.
mttatkns
Thrifty Member
posted: Oct. 27, 2009 @ 9:14p
scripta said: jetsfan92588 said: lol-change your email address, and use a separate one to give out to sites you don't completely trust. (gmail is usually good)The better solution is to use sub-addressing (aka plus addressing) or have individual forwarders for each online account.That's what I do - I own a domain, and have a catchall account forwarding to my actual e-mail account. I give a separate e-mail address to each website (e.g. fatwallet@domainname.com, google@domainname.com, apple@domainname.com); then when I receive a spam message I know exactly where it came from (by looking at which address it was sent to), and I setup the addresses for repeat offenders to automatically delete all incoming mail. I don't employ any other sort of spam filter (I purposefully disable spam filters because they sometimes do catch legitimate e-mails that might be important business inquiries, etc.), and I have yet to receive one spam message to my actual e-mail address.
mttatkns said: I own a domain, and have a catchall account forwarding to my actual e-mail account. I give a separate e-mail address to each website (e.g. fatwallet@domainname.com, google@domainname.com, apple@domainname.com)
mttatkns said: That's what I do - I own a domain, and have a catchall account forwarding to my actual e-mail account. I give a separate e-mail address to each website (e.g. fatwallet@domainname.com, google@domainname.com, apple@domainname.com); then when I receive a spam message I know exactly where it came from (by looking at which address it was sent to), and I setup the addresses for repeat offenders to automatically delete all incoming mail. I don't employ any other sort of spam filter (I purposefully disable spam filters because they sometimes do catch legitimate e-mails that might be important business inquiries, etc.), and I have yet to receive one spam message to my actual e-mail address.
I do the same thing with only one difference. When I start getting spammed on such a unique account, instead of deleting the emails I forward them to an email of the offender. Yeah, ok, I don't accomplish much by doing that just by myself, but it still feels good
rechdxs
Member
posted: Oct. 28, 2009 @ 12:09a
If you are using Yahoo, you can setup disposable email addresses, look under Address Guard in settings. If on gmail, use the + notation. username+fatwallet@gmail.com. username+tripadvisor@gmail.com. No need to configure gmail for this, already setup - gmail ignores anything after the +.
I ran into some business for sale listings for PayPay a while back. A bunch of Bay Area kids run the website and were trying to sell it to raise funds for their online Rapidshare clone, Boxstr, which they now call OpenDrive. Even from the limited amount of information that was provided on the for sale listing, it does not at all surprise me that they've pissed someone off. Oh well.
Ecuadorgr said: I do the same thing with only one difference. When I start getting spammed on such a unique account, instead of deleting the emails I forward them to an email of the offender. Yeah, ok, I don't accomplish much by doing that just by myself, but it still feels good You do realize that the from and return-to addresses of most spam messages do not belong to the spammer, right? You're just creating spam traffic.
Once I start getting spam I delete the forwarder. I used to have it sent to :blackhole: in the past, but I decided it's better to have it rejected.
olegos
Senior Member
posted: Oct. 28, 2009 @ 9:40a
Those who use unique per-company addresses, as I do, which of the large reputable companies have you found leaking addresses to spammers? Not spamming you with their own stuff, but actually causing generic spam like body parts enlargements and make-money-fast?
The major companies I've caught were United Airlines, Datek/Ameritrade (I've originally registered with Datek, but spam started coming in after they got acquired by Ameritrade), and EmigrantDirect (they're not large, but since it's a bank, I'll mention them too). United is the worst offender. After I started getting spam to their address, I logged into my frequent flier account and changed the address. Two weeks later, the new address starts getting spammed.
Maybe we should start a separate thread for this, where QS can have a list of offenders.
olegos
Senior Member
posted: Oct. 28, 2009 @ 9:58a
By the way, don't put much trust into the +addresses. Now that even Gmail is supporting them, I'm sure spammers will start removing the + part soon.
rechdxs said: If you are using Yahoo, you can setup disposable email addresses, look under Address Guard in settings. If on gmail, use the + notation. username+fatwallet@gmail.com. username+tripadvisor@gmail.com. No need to configure gmail for this, already setup - gmail ignores anything after the +.
I ran into some business for sale listings for PayPay a while back. A bunch of Bay Area kids run the website and were trying to sell it to raise funds for their online Rapidshare clone, Boxstr, which they now call OpenDrive. Even from the limited amount of information that was provided on the for sale listing, it does not at all surprise me that they've pissed someone off. Oh well.
The + trick works, but only on sites that allow + in the email string, unfortunately. More than a few websites validate email addresses incorrectly. They assume its only alphanumeric, instead of following the RFC.
mttatkns said: scripta said: jetsfan92588 said: lol-change your email address, and use a separate one to give out to sites you don't completely trust. (gmail is usually good)The better solution is to use sub-addressing (aka plus addressing) or have individual forwarders for each online account.That's what I do - I own a domain, and have a catchall account forwarding to my actual e-mail account. I give a separate e-mail address to each website (e.g. fatwallet@domainname.com, google@domainname.com, apple@domainname.com); then when I receive a spam message I know exactly where it came from (by looking at which address it was sent to), and I setup the addresses for repeat offenders to automatically delete all incoming mail. I don't employ any other sort of spam filter (I purposefully disable spam filters because they sometimes do catch legitimate e-mails that might be important business inquiries, etc.), and I have yet to receive one spam message to my actual e-mail address.
I had thought this would be a great way to catch companies who sell/rent your email address to less reputable companies or who don't bother to protect your privacy. Any interesting findings on companies who sold your email address?
parquedematthew said: I had thought this would be a great way to catch companies who sell/rent your email address to less reputable companies or who don't bother to protect your privacy. Any interesting findings on companies who sold your email address? You can do this with gmail by putting your address+companyname@gmail.com, At least you used to be able to. So for example kamalktk+fatwallet@gmail.com (not my gmail address btw, just an example)
olegos said: Those who use unique per-company addresses, as I do, which of the large reputable companies have you found leaking addresses to spammers? Not spamming you with their own stuff, but actually causing generic spam like body parts enlargements and make-money-fast? This has happened to me twice in cases where I was actually able to contact someone knowledgeable within the company. In both cases, it turned out that one or more machines had been infected with malware that gathered email addresses. (Without going into details, I have reason to believe that these explanations were true.)
On the one hand, it's nice to know that the companies weren't deliberately selling my addresses to the scum of the earth. On the other hand, it's frightening to think of how badly the companies are managing their computer security.
Which is more likely: that UA, Ameritrade, and EmigrantDirect try to make a few extra pennies by illegally violating their own privacy rules, or that they have inadequate security with malware on machines with access to customer information? I really don't like either answer...
LH2004
Frivolous Member
posted: Oct. 28, 2009 @ 4:35p
ThePessimist said: Which is more likely: that UA, Ameritrade, and EmigrantDirect try to make a few extra pennies by illegally violating their own privacy rules, or that they have inadequate security with malware on machines with access to customer information? I really don't like either answer...Yeah, but it's quite possible that the compromised machine was just sending marketing email, and didn't necessarily have the kinds of information that are actually sensitive.
Not that a malware infection on the inside is in any way acceptable.
olegos
Senior Member
posted: Oct. 28, 2009 @ 6:00p
ThePessimist said: Which is more likely: that UA, Ameritrade, and EmigrantDirect try to make a few extra pennies by illegally violating their own privacy rules, or that they have inadequate security with malware on machines with access to customer information? I really don't like either answer... Not the company itself, but one of the employees with access could decide to make a few extra pennies on the side. Or an employee of a company they subcontract to do mass mailings to customers.
Actually I just tracked down an e-mail I received from Ameritrade in Sept 2007 (that's several years after I've initially reported the problem to them). I vaguely remembered getting it, but couldn't locate it, until now. Here's what it said: Ameritrade said: Let me tell you why I am sending you this email. While investigating client reports about the industry-wide issue of investment-related SPAM, we recently discovered and eliminated unauthorized code from our systems. This code allowed certain client information stored in one of our databases, including email addresses, to be retrieved by an external source. ... While Social Security Numbers are stored in this particular database, we have no evidence to establish that they were retrieved or used to commit identity theft. ... So that's another attack vector for you.
scripta said: Ecuadorgr said: I do the same thing with only one difference. When I start getting spammed on such a unique account, instead of deleting the emails I forward them to an email of the offender. Yeah, ok, I don't accomplish much by doing that just by myself, but it still feels good You do realize that the from and return-to addresses of most spam messages do not belong to the spammer, right? You're just creating spam traffic.
Once I start getting spam I delete the forwarder. I used to have it sent to :blackhole: in the past, but I decided it's better to have it rejected.
As I said it is a unique account (companyname_sortkey@MyDomain), so when I got spammed for example at pcmall_orders@MyDomain I forwarded that address to a valid account at pcmall. What you are talking about is something of which I am occasional a victim. So, every few months I have a spammer use gibberish@MyDomain as a "from" address for their spam. As I have a catchall alias, I get hundreds of messages from idiot spam filters that think the "from" address of a spam message is a good address to reply to and gloat about catching the spam! What I do then ( if I am in the right mood ) is to open the spam messages, see the website they point to and try to find a valid email address of the person or company who owns or who designed that site - I then forward the address to them. It used to be easier to find a spammer's email, but now they use private registrations etc.
olegos said: Those who use unique per-company addresses, as I do, which of the large reputable companies have you found leaking addresses to spammers? Not spamming you with their own stuff, but actually causing generic spam like body parts enlargements and make-money-fast?
The major companies I've caught were United Airlines, Datek/Ameritrade (I've originally registered with Datek, but spam started coming in after they got acquired by Ameritrade), and EmigrantDirect (they're not large, but since it's a bank, I'll mention them too). United is the worst offender. After I started getting spam to their address, I logged into my frequent flier account and changed the address. Two weeks later, the new address starts getting spammed.
Maybe we should start a separate thread for this, where QS can have a list of offenders.Never had a problem with UA (5 year-old account). I had spam on 2 peachtree accounts, 3 dealpass accounts, and a webhostingtalk account. I suspect only peachtree was deliberate.
worldclearingscam
New Member
posted: Oct. 30, 2009 @ 5:31a
Dupe
worldclearingscam
New Member
posted: Oct. 30, 2009 @ 5:37a
Swivelguy said: Hi, and thanks you for yours time. I am hoping you can post this on your blog so that others may know the great joy and experience I am having with PayPay.com. At first I was skeptical, but now that I am making money and enjoying the easy life, I know that PayPay.com is the real deal. Let me just say clearly that this is LEGIT and all of my investments at PayPay.com have paid IN FULL and made me money. Thank you and have a very nice day.
"DISCLAIMER: CREDIT CARD PAYMENTS INDUSTRY IS VERY PROFITABLE WITH HIGH POTENTIAL RISK. ALL CONCERNED PARTIES MUST FULFIL STRICT REQUIREMENTS. YOU ARE NOW ACKNOWLEDGED. TO SIGN UP FOR THE PPS SERVICE IS VOLUNTARY. YOU CANNOT DISPUTE THAT WE THWARTED YOUR AMBITIONS"
I love the last line. They just need to add.. 'ALL YOUR BASE IS BELONG TO US!'
sparky3
Member
posted: Oct. 30, 2009 @ 9:40a
kamalktk said: I ordered the paypay platter last night at the chinese restaurant. I'm still paying, believe me.
LOL
JusticewillPrevail
New Member
posted: Nov. 23, 2009 @ 5:38p
To All PayPay Customers:
NOTICE OF FRAUD COMMITTED BY OSKAR DURIS.
In short, it is imperative that YOU DO NOT PROCESS any more transaction through www.paypay.com as paypay.com is currently operating illegally and you may not recover any of your funds.
PayPay Inc. acquired the assets only of WorldClearing entities less than a year ago, therefore is the legal owner of the domain name www.paypay.com. Recently, it came to the attention of PayPay Inc. that Oskar Duris committed many irregularities and illegal acts while operating the site paypay.com from 2003 to 2008, using WorldClearing entities while leaving a large negative balance of cash as Oskar Duris used cash from customers to pay for his expenses.
Around a month ago, following such discovery and request for explanation, Oskar Duris “hijacked” paypay.com by copying paypay.com software, database, getting such copy on server hosted in Slovakia, and diverted the domain name paypay.com to these servers. PayPay Inc. filed a suit against Oskar Duris to recover all the “hijacked” domain names and filed a report with several government agencies against Oskar Duris. Oskar Duris is currently under investigation for his wrongdoing and possible criminal acts.
After PayPay Inc. contacted all banks that had given its credit card processing abilities to report such illegal activities from Oskar Duris and after detailed investigations from each bank, they ALL concluded that paypay.com was operated by Oskar Duris illegally and stop credit cards processing to Oskar Duris while leaving such processing abilities to PayPay Inc. through its new site www.paypayinc.com.
PayPay Inc. is aware that Oskar Duris reported www.paypayinc.com as a phishing site, in his continued effort to damage PayPay Inc., while displaying a note on every PayPay account related to that. PayPay Inc. is diligently working with Google, Firefox, and other browsers and to resolve this false reporting from Oskar Duris.
I am sure you understand the gravity and importance of the situation and that all the banks, Google, Firefox, and other organizations would not have decided lightly to transfer all merchant accounts to www.paypayinc.com and re-established www.paypayinc.com while blocking all ability of paypay.com to process credit cards transactions if paypay.com was not a fraudulent site. Unfortunately, as Oskar Duris controlled over PayPay Inc.’s staff in Slovakia and bank accounts in Eastern European countries, PayPay Inc. advises that you withdraw all the cash available on your account at paypay.com or such funds will be lost. PayPay Inc. will not process any money transmitting transaction until further notice. PayPay Inc. will continue to enable merchants to process credit card payments through www.paypayinc.com and will enable money withdraw for these merchants only.
Please do not hesitate to contact PayPay Inc. if you have any further questions or if you need any assistance to substantiate the content of this email. Sincerely, Xavier Roy Chairman & CEO PayPay Inc.
tazzy531
Senior Member - 4K
posted: Nov. 25, 2009 @ 7:43a
JusticewillPrevail said: To All PayPay Customers:
NOTICE OF FRAUD COMMITTED BY OSKAR DURIS.
In short, it is imperative that YOU DO NOT PROCESS any more transaction through www.paypay.com as paypay.com is currently operating illegally and you may not recover any of your funds.
PayPay Inc. acquired the assets only of WorldClearing entities less than a year ago, therefore is the legal owner of the domain name www.paypay.com. Recently, it came to the attention of PayPay Inc. that Oskar Duris committed many irregularities and illegal acts while operating the site paypay.com from 2003 to 2008, using WorldClearing entities while leaving a large negative balance of cash as Oskar Duris used cash from customers to pay for his expenses.
Around a month ago, following such discovery and request for explanation, Oskar Duris “hijacked” paypay.com by copying paypay.com software, database, getting such copy on server hosted in Slovakia, and diverted the domain name paypay.com to these servers. PayPay Inc. filed a suit against Oskar Duris to recover all the “hijacked” domain names and filed a report with several government agencies against Oskar Duris. Oskar Duris is currently under investigation for his wrongdoing and possible criminal acts.
After PayPay Inc. contacted all banks that had given its credit card processing abilities to report such illegal activities from Oskar Duris and after detailed investigations from each bank, they ALL concluded that paypay.com was operated by Oskar Duris illegally and stop credit cards processing to Oskar Duris while leaving such processing abilities to PayPay Inc. through its new site www.paypayinc.com.
PayPay Inc. is aware that Oskar Duris reported www.paypayinc.com as a phishing site, in his continued effort to damage PayPay Inc., while displaying a note on every PayPay account related to that. PayPay Inc. is diligently working with Google, Firefox, and other browsers and to resolve this false reporting from Oskar Duris.
I am sure you understand the gravity and importance of the situation and that all the banks, Google, Firefox, and other organizations would not have decided lightly to transfer all merchant accounts to www.paypayinc.com and re-established www.paypayinc.com while blocking all ability of paypay.com to process credit cards transactions if paypay.com was not a fraudulent site. Unfortunately, as Oskar Duris controlled over PayPay Inc.’s staff in Slovakia and bank accounts in Eastern European countries, PayPay Inc. advises that you withdraw all the cash available on your account at paypay.com or such funds will be lost. PayPay Inc. will not process any money transmitting transaction until further notice. PayPay Inc. will continue to enable merchants to process credit card payments through www.paypayinc.com and will enable money withdraw for these merchants only.
Please do not hesitate to contact PayPay Inc. if you have any further questions or if you need any assistance to substantiate the content of this email. Sincerely, Xavier Roy Chairman & CEO PayPay Inc.
Oh, this is getting good! A partner's argument being fought out in public. This is as good as watching a couple break up in on the subway platform. Sometimes you just want to catch the next train just to watch more of it.
Disclaimer: By providing links to other sites, FatWallet.com does not guarantee, approve or endorse the information or products available at these sites, nor does a link indicate any association with or endorsement by the linked site to FatWallet.com.
Members of our community may attach files to a post in accordance with the User Agreement. FatWallet is not responsible for the content, accuracy, completeness or validity of any information contained in any attached file. Files have *not* been scanned for viruses. Be especially wary of Excel files which may contain malicious content.
