Debunking hoaxes and exposing scams since 2003!





Jump To: Example    Detailed Analysis   References

PayPal 'Account Access Limited' Phishing Scam


Jump To: Example    Detailed Analysis   References

Outline

Email purporting to be from PayPal claims that your account has been limited because PayPal needs more information to help confirm your identity.

Fraud
©Depositphotos.com/Illia Uriadnikov



Brief Analysis

The message is not from PayPal. It is a phishing scam designed to trick you into divulging your account login details, credit card numbers, and other personal information to cybercriminals.

   

Share







Bookmark and Share




Example

Dear Customer,

We need your help resolving an issue with your account. To give us time to work together on this, we've temporarily limited what you can do with your account until the issue is resolved.

We understand it may be frustrating not to have full access to your PayPal account. We want to work with you to get your account back to normal as quickly as possible.

What's the problem?

We need a little bit more information about you to help confirm your identity.

Case ID Number: PP-001-487-280-335

Paypal Phishing Scam Email


Detailed Analysis

According to this email, which purports to be from online payment company PayPal, your PayPal account has been limited because the company needs more information about you. The message claims that, in order to resolve the issue, you need to click an update button to provide information to help confirm your identity.

The message includes the PayPal logo.

However, the email is not from PayPal and the claim that the recipient's account has been limited is a lie. Instead, the email is a phishing scam designed to trick you into giving your personal and financial information to online criminals.

The link in the message opens a bogus webpage that is designed to emulate a genuine PayPal website. Once on the fake site, you will be asked to login by providing your PayPal email address and password.

After submitting your login credentials, you will be taken to further bogus webpages that request contact and identity details and credit card information.(See screenshot below)

All of the information supplied can be collected by criminals and used to hijack your PayPal account and commit credit card fraud and identity theft.

When sending emails, PayPal will always address you by name, never "Dear Customer", "Valued PayPal Member" or other generic greetings. Be very cautious of any message purporting to be from PayPal that claims that you must click a link or open an attachment to update account details or fix an account issue. If you receive such an email, do not click any links or open any attachments that it contains. It is always safest to login to your PayPal account by entering the address into your browser's address bar rather than by clicking a link in an email.

You can report PayPal phishing scam emails that you receive via the reporting email address listed on the company's website.

   

Share







Bookmark and Share


Paypal Phishing Webpage

Last updated: August 8, 2015
First published: November 29, 2013
By Brett M. Christensen
About Hoax-Slayer

References
Phishing Scams - Anti-Phishing Information
PayPal 'Verify to Resolve Account Limitations' Phishing Scam
PayPal - Send hoax emails to phishing@paypal.com.au






Latest Hoax-Slayer Articles



More stories!

'Internet Capacity Warning' Phishing Scam
According to this email, which claims to be from the 'Support Department' at 'Information Technology Services', your internet capacity is 70% full and you therefore need to contact support to avoid problems.
Published: July 6, 2015


Kroger 'Free Coupons' Survey Scam
Message being distributed across Facebook claims that users can receive free coupons from American retailer Kroger just by sharing a message and visiting a third party website to claim their prize.
Published: June 16, 2015


Pointless Facebook Warning - Hackers Posting Insulting Messages or Sexual Content In Your Name
'Hacker' alert messages circulating on Facebook claim that, without your knowledge, hackers are posting insulting or sexual messages that appear to come from you onto your Facebook Timeline.
Published: June 3, 2015