Potential PayPal fraud problem

Just a post to warn anyone on here who has a PayPal account (usually associated with eBay trading) of a problem which I had on Saturday last. I was watching the Olympics at home when I recieved a phone call from PayPal America (I believe that is where their main base is located) asking if I had made done any transactions that day with PayPal. When I said that I hadn’t they said that they were monitoring my account (why?) and noticed what they thought was a fraudulent transaction for almost $500 U.S. When i confirmed to them that I had certainly not made any such transaction they said that they would temporarily suspend the payment side of myaccount whilst they investigated the incident and would send me details of what had happened by e-mail. They would also be refunding my account for all that had been taken out fraudulently (phew!). When I asked how someone would have got hold of my security log-in details for my account they suggested that my computer had been infected with a “key stroke logging program” . I told them that I found this difficult to believe as I have the full A.V.G. internet security suite installed and it had updated and run a full system scan that morning , with no problems or infections reported. I suggested that as they had contacted me out of the blue to ask about this transaction then perhaps the security problem was at their end, they were adamant that this was not the case and my computer must have been compromised. I have, obviously, changed all the log-in details for any sensitive programs which I use as a precaution but just wanted to pass on a warning to any of you out there who have a PayPal account to be on your guard. The person (scumbag) responsible has a chinese sounding name (shuaji zhang) and there ISP address seems to be a Chinese based gambling setup (163.com).
BE WARNED!!!
Les

It’s not necessary to use a key logger to get the details, it’s much easier to send an email advising you a system update
is taking place for (Bank, PayPal, Ebay etc etc) and part of this requires you click on a link to confirm your login details and password.

And before you say no one would fall for that, people do.

Kickstart I’m not suggesting you did receive and/or respond to such an email, merely pointing out these scams have
an easier way to get that kind of information.