Current PayPal Scam Emails – what to look for
Yet again I’m getting spammed with scam emails trying to get my information from me, so they can steal my identity. The one I got a lot of today was apparently from PayPal. My intention is to educate people on how to spot these phishing emails so that it’s not just current PayPal Scam Emails you spot, it’s ones from other well known places too that you may have an account – for example Amazon.com.
The subject of the emails differs, but the content remains the same (at least from this current batch of spam I’ve received). The subjects in my recent PayPal phishing emails have been:
- We’re concerned that someone is using your PayPal account without your knowledge.
- Log in to PayPal to resolve a limitation on your account
- Recently, there’s been activity in your PayPal account that seems unusual compared to your normal account activities.
- Please log in to PayPal to confirm your identity and update your password and security questions.
- Change your password and security questions
- …there will be many variations on this.
Let’s go through this bit by bit and I’ll show you how to spot that this is a scam or phishing email:
- If you look at who actually sent you the email, it’s not from PayPal it’s from some person I’ve never heard of with a domain I’ve never heard of from Russia (.ru)
- Formatting of the surrounding box is not well formed. I’m viewing the email in Outlook (desktop version) – every company that is serious about it’s emails, makes sure its communications by email are able to be viewed correctly in all the major email programs – whether web based or desktop based.
- This box just looks messy – the words Response required are on two lines and Upon receipt just seems as though it should have been part of “Response required”
- An ugly button for you to click – PayPal’s buttons are nicely formatted and smooth – eg:
- More ugly formatting – my Outlook has downloaded the images for this email, so the email should be displaying correctly.
- It says it’ll ask you to provide the information you gave when setting up your account – this should rung alarm bells – although you may have to do this on PayPal’s real site, it’s just a warning to be wary of anyone asking you for this information.
- This is a very badly formatted paragraph – the person who put it together must not be fully familiar with how to correctly format an HTML email.
- Similar to 7 – this doesn’t render correctly when viewed – REAL emails would always render correctly eg. this is the footer from a real communication from PayPal:
- Also notice the text on the scam footer: “Please do not reply to this email because we are not monitoring this inbox. To get in touch…” whereas PayPals far more eloquently put footer says: “Please do not reply to this email. This mailbox is not monitored and you will not receive a response. For assistance, log in to your PayPal…” – can you see the difference between the two?
- An additional point – PayPal like most organisations that send emails to their members, will always use your name (First Name and Last Name) – the scam email is addressed to “Dear Member” – in this case, it should have been addressed “Dear Mark Tait”
Additional pointers for spotting scam or phishing emails
If you hover over the PayPal logo at the top of the email – the link it will take you to is shown – now I don’t know who thomas-whoever is – but the link I’d be taken to isn’t PayPal.com – and it doesn’t start with https:// (all links for PayPal will start with https://):
Similarly any other link – whether text or a button will also take you to a phishing site:
Reporting a Phishing Email to PayPal
PayPal takes these scams very seriously. Should you come across one, please report it to them by following this link: https://www.paypal.com/uk/webapps/mpp/phishing
An additional comment made by Gil from Wealthy Affiliate was to only ever log on to PayPal using the link you know to be correct – https://www.paypal.com – never log on by clicking a link on an email or website. Thanks Gil! The same is true of any online service you use – go through the links you know, no matter what – if there is an important message for you, when you log on in the proper way, there will be a message for you to let you know of any issue with your account.
More information on scams
Thank you for reading this post. If it’s helped you, or if you have any questions, please leave them below.
All the best, Mark