Tuesday, June 6, 2023
  • Hype
  • Murai
  • Lipstiq
  • Diva
  • Varnam
  • Moviedash
  • Autofreaks
Lowyat.NET
  • News
    • Lifestyle
    • Computing
    • Hardware
    • Internet
    • Rumours & Leaks
    • Software
  • Forums
    • Kopitiam
    • Tradezone
    • Property Talk
    • Finance & Business
    • Fast and Furious
  • Gaming
    • PC Gaming
    • Console
    • Esports
  • Mobile
    • Apps
    • OS
    • Tablets
    • Phones
    • Telco
      • Celcom
      • DiGi
      • Maxis
      • Tune Talk
      • U Mobile
      • Buzzme
  • Pricelists
    • Compu-zoneUpdated
    • ViewnetUpdated
    • Sri ComputersUpdated
    • StartecUpdated
    • ThundermatchExpired
  • More
    • Automotive Tech
    • Drone
    • Enterprise
    • Entertainment
    • Fashion
    • E-Hailing
    • Wearables
No Result
View All Result
Lowyat.NET
  • News
    • Lifestyle
    • Computing
    • Hardware
    • Internet
    • Rumours & Leaks
    • Software
  • Forums
    • Kopitiam
    • Tradezone
    • Property Talk
    • Finance & Business
    • Fast and Furious
  • Gaming
    • PC Gaming
    • Console
    • Esports
  • Mobile
    • Apps
    • OS
    • Tablets
    • Phones
    • Telco
      • Celcom
      • DiGi
      • Maxis
      • Tune Talk
      • U Mobile
      • Buzzme
  • Pricelists
    • Compu-zoneUpdated
    • ViewnetUpdated
    • Sri ComputersUpdated
    • StartecUpdated
    • ThundermatchExpired
  • More
    • Automotive Tech
    • Drone
    • Enterprise
    • Entertainment
    • Fashion
    • E-Hailing
    • Wearables
No Result
View All Result
Lowyat.NET
No Result
View All Result
Home Data Breaches

iPay88 Email API Breached, Used To Phish For Credit Card Details

by Vijandren
June 2, 2020
ipay88 security breach user card data compromised
553
SHARES
Share on FacebookShare on Twitter

iPay88, a leading regional payment gateway provider based in Malaysia has suffered a breach involving its email API. While we are not able to ascertain at this point in time the extent of the breach, we can confirm that the compromised email API is, in turn, being used to send out very authentic sounding emails to unsuspecting customers –  urging them to key in their credit card information to a fake site, aptly parked at ipay88.org (iPay88’s legitimate site is hosted on ipay88.com and ipay88.com.my).

While most phishing emails are easily filtered out as spam by service providers like Google’s Gmail and Microsoft’s Outlook due to their dubious origins, this particular email carries all the necessary credentials to bypass all filters, simply because it is being sent from a bulk email service that has been pre-approved by iPay88.

A closer look at the email headers confirms that the phishing email originated from elasticemail.com, one of the two email services approved by iPay88 to send out emails to their customers and merchants. We have independently compared and verified legitimate emails and receipt mails sent out by iPay88 from both these email services even as far back as early 2019.

The email itself claims that there is an updated User Agreement Policy implemented by iPay88 that is required to ‘protect our client’s personal data’. As such, recipients of the email are encouraged to complete the verification by visiting ipay88.org, a fake phishing site set up to collect details as well as credit card information from unsuspecting users.

iPay88 however, via a posting on their Facebook page, has denied that they have suffered any breach, and are instead blaming it on scammers who are randomly sending out emails based on scraped addresses from email lists. We have reached out to iPay88 for more information on their claims.

If you’ve inadvertently keyed in your details at the ipay88.org phishing site, we urge you to immediately contact your bank to inform them that your card has been compromised and request for a replacement card.

What’s your Reaction?
+1
0
+1
0
+1
0
+1
0
+1
0
+1
0
+1
0

Follow us on Instagram, Facebook, Twitter or Telegram for more updates and breaking news. 

Filed Under iPay88LeakPhishing
Updated 10:29 am, Thu, 4 June 20
Back to top
Share221Tweet138SendShare

RELATED ARTICLES

Hacker stock
Data Breaches

Data of RaidForums Members Leaks Onto New Hacking Forum

by Ian Chee
May 30, 2023
uitm leak breach 12,000 foundation
Data Breaches

UiTM Leaks Personal Information Of Almost 12,000 Foundation Applicants

by Ikmal Rozlan
May 10, 2023
WD office
Data Breaches

Western Digital: Some Customer Info Leaked In Recent Security Breach

by Ian Chee
May 9, 2023
OnePlus Nord Buds 2
Lightning Reviews

OnePlus Nord Buds 2 Lightning Review: My Favourite Budget ANC Earbuds To-Date

by Ikmal Rozlan
April 28, 2023

LOWYAT.TV

No Result
View All Result

TRENDING THIS WEEK

  1. 1
    Data Breaches

    iPay88 Email API Breached, Used To Phish For Credit Card Details

  2. 2
    Telco

    Unifi Introduces UNI5G Postpaid 89 Unlimited Plan With No FUP

  3. 3
    Branded

    Safeguarding Your Finances: Six Tips From OctaFX

  4. 4
    Branded

    Here’s Why The Samsung’s One UI 5.1 Is The Most Versatile & Flexible OS To Date

  5. 5
    Rumours & Leaks

    Apple Will Reportedly Open Its First Official Store In Malaysia Next Year

NETWORK

  • Hype
  • Murai
  • Lipstiq
  • Diva
  • Varnam
  • Moviedash
  • Autofreaks

ABOUT

  • Advertise
  • Careers
  • Privacy Statement
  • Contact Us
  • Editorial Policy
  • Terms & Conditions

©2023 VIJANDREN RAMADASS. ALL RIGHTS RESERVED.

No Result
View All Result
  • News
    • Lifestyle
    • Computing
    • Hardware
    • Internet
    • Rumours & Leaks
    • Software
  • Forums
    • Kopitiam
    • Tradezone
    • Property Talk
    • Finance & Business
    • Fast and Furious
  • Gaming
    • PC Gaming
    • Console
    • Esports
  • Mobile
    • Apps
    • OS
    • Tablets
    • Phones
    • Telco
      • Celcom
      • DiGi
      • Maxis
      • Tune Talk
      • U Mobile
      • Buzzme
  • Pricelists
    • Compu-zone
    • Viewnet
    • Sri Computers
    • Startec
    • Thundermatch
  • More
    • Automotive Tech
    • Drone
    • Enterprise
    • Entertainment
    • Fashion
    • E-Hailing
    • Wearables

©2023 LOWYAT, LLC. ALL RIGHTS RESERVED.