Fake PayPal messages

A collection of fake PayPal messages which are seen in the wild. This set contains messages on ‘Account confirmation’, ‘Someone is using your Paypal’ and ‘Foreign login on PayPal’.

Account confirmation messages

According to the fake PayPal message, the company has many spam / fake accounts. That is why they want to try to remove all those accounts from the database. All you have to do is click on the ‘Confirm my account’ button to ensure that your account is not deleted. Do not do this! The message is not from PayPal, but from scammers who want to find out your information.

Recognize fake message

On the official PayPal website you can find where you look a fake message sent on behalf of the company. For example, they report that an email that does not end with @ paypal.com, @ paypal.nl or @ e.paypal.nl is most likely a fake email. Furthermore, they will never have an impersonal salutation. More information on how to spot a fake email can be found here.

Someone is using your PayPal account

Screenshot of a fake Paypal mail

Criminals make another attempt to intercept your data. This time, the sender of a fake email tries to tell you that someone else is using your account.

The PayPal logo is misused in a phishing email. Under the logo it is written that someone uses your account from another location.

Button

Because the unknown person has tried to validate your email address, PayPal would like to check whether you really are using a message. You can supposedly indicate this by clicking on the ‘Let’s Get Started’ button.

Criminal activities

When you click on the button and enter your details on the next page, these will fall into the hands of criminals. Don’t fall for this!

Foreign login on your PayPal account

Pay close attention if you use PayPal. Malicious parties try to get your login details via an English phishing email about a suspicious login attempt.

The sender of the email writes that your PayPal account is logged in from the US. In the e-mail there is a link to log in yourself. However, this refers to a fake website, on which criminals hunt for your login details. Don’t fall for it and throw the email in the trash.

Verify your PayPal banking info

Cybercriminals send PayPal emails stating that the receivers are required to verify their customers’ payment information. They would have previously sent you an update form by post, but have not yet received a response. So the cybercriminals request from their victim, whether they still want to fill in the update form online with the payment details.

It is recommended not to respond to those email message, chances are that the scammers are using your payment information for other purposes.

So what can I do?

Well, it is actually very simple. If you need to do anything with your Paypal account, then make sure that you make use of the official PayPal site. All of the ‘important’ messages which you are interested in, are always found back on the official site.

6 Practical tips

  1. Does the email contain an attachment? Never just click on this attachment. With just one click, you can already download malicious software on your computer. Check in the same way as with phishing emails, where the link leads to, or what file you download. Attachments with the extension .exe or .zip are often risky. Do not open these attachments.
  2. Take a good look at the meaning of the message. For example, banks never send emails stating that you have to enter your details. They will never ask you to send your bank card. Are there threats with a reminder or bailiff? Don’t fall for it! The fraudsters do this only to scare you. Often the email gives you an urgent reason to take action.
  3. Note spelling mistakes and the design of the email. Does the email look amateurish? Then you can almost immediately assume that it is a false email. Criminals are getting better at copying reliable design, don’t let the design mislead you.
  4. Still not sure if an email was sent by the company or agency the email appears to be from? Please contact the company by phone number or email address available on the official site of the agency or company.
  5. Purchase a good virus scanner. Have you accidentally clicked on an attachment that contains malware? Then the virus scanner can in some cases prevent your computer from being infected.
  6. Watch out for emails saying you won. Do not enter your details.
Share this info: