Table of Contents
Have you ever received an unexpected email alerting you to a purchase you never made? Imagine that this email comes from an apparently authentic address, like that of PayPal. Would you be tempted to react immediately without thinking? Find out how not to fall into the trap of this latest scam.
The 3 key points not to miss
Fraudsters have found an ingenious method to bypass security measures. By exploiting a technical flaw in PayPal’s subscription system, they manage to insert fraudulent messages into legitimate notifications. These emails, sent from the address “service@paypal.com”, seem credible and evade spam filters.
The email claims that a significant purchase, such as a computer or a phone from a renowned brand like Apple, has been made. This message is specifically designed to coincide with periods when you might have made significant expenses, making it even more realistic. However, in the context of this scam, you have actually bought nothing.
The scammers add a phone number in the email, prompting you to call to remedy this nonexistent purchase. Once the victim is on the line, the fraudsters present themselves as PayPal advisors and request sensitive information, including banking details, supposedly to cancel the transaction.
The main goal of fraudsters is to create a sense of urgency and panic. It is crucial to stay calm and never give in to pressure. No legitimate company, including PayPal, will ask for your banking details by phone or email. If you receive a suspicious email, check your recent purchases directly through your PayPal account and ignore the email’s instructions if nothing matches.
It is also wise to report this type of message to PayPal and regularly check your bank statements for any suspicious activity.
Founded in 1998, PayPal has become one of the world leaders in online payments, facilitating transactions for millions of users worldwide. This popularity makes it a prime target for cybercriminals seeking to exploit users’ trust in the platform. Phishing scams using fraudulent emails are not new, but they constantly adapt to new security measures, requiring increased vigilance from users.