A security flaw in the PayPal web site is being actively exploited by fraudsters to steal credit card numbers and other personal information belonging to PayPal users. The issue was reported today via Netcraft's anti-phishing toolbar.
The scam works quite convincingly, by tricking users into accessing a URL hosted on the genuine PayPal web site.
Read the complete story here. (Netcraft)