July 24th, 2008


PayPal is clumsy

I just set up a PayPal account. It wasn't all that hard, but there were a couple of annoying hoops. To recieve money (at least as it looked to me) I had to do the verify your account dance.

But, as I found out when I got paid for the prints I've sold (and many thanks to those who have bought them) I found out the money doesn't go directly to the bank, but to a holding account at PayPal. Which has a $500 limit on withdrawals per month.

To get past that limit you have to give them your social, or a credit/debit card number. What that actually does, I have no idea.

That's not the clumsy I am concerned with. I would be surprised to discover any of you who haven't had a "phishing expedition" to your email claiming to be from PayPal, and asking for your information.

PayPal, when you do each of these steps tells you to never give your password to anyone. It also tells you to never click through a link, but to always open a new tab/window, and type in the URL.

So what did they do at east step of these procedures (which require you to give them information from things they do with your bank account. To set up the account they send you about $.50, and to raise the limit they borrow $1.95)?

The included an URL to PayPal.

If they were being smart they wouldn't do that, and people wouldn't be so inclined to click trhough. Which would reduce the effectiveness of the phishing expeditions.