A prolific phishing gang known as 16Shop has added PayPal customers to its target set. The latest version of the group s phishing kit is designed with a number of features that are aimed to steal as much personally identifiable information (PII) as possible from users of the popular money-transfer service. Stolen information is subsequently exfiltrated via SMTP to an attacker-controlled email inbox. 16Shop is distributed in a malware-as-a-service model, with operators likely located in Southeast Asia.
Source: https://threatpost.com/16shop-phishing-gang-paypal-users/152064/