Debunking email hoaxes and exposing Internet scams since 2003!

Hoax-Slayer Logo Hoax-Slayer Logo

DividerDivider
Home    About    New Articles    RSS Feed    Subscriptions    Contact
DividerDivider


Site Navigation

Divider









Paypal Phisher Scam

Summary:
Bogus email claiming to be from PayPal asks recipient to log on to a fake website and provide personal information.



Status:
False

Example:(Received, May 2005)
Dear PayPal client,

While performing it's regular scheduled monthly billing address check our system found incompatible information which seams to be no longer the same with your current credit card information that we have on file. If you changed your billing information or if you moved from you previous address please follow up the link bellow and update your billing information: If you didn't change any of this information you still need to follow up the previous link and update your existing billing information because it means that our database regular scheduled update wasn't made correctly. Choosing to ignore this message will result in to a temporary suspension of your account within 24 hours, until you will choose to solve this unpleasant situation.
We apologies for any inconvinience this may caused you and we strongly advise you to update your information you have on file with us. Clicking [BOGUS LINK REMOVED] you will avoid any possible futuring billing problems with your account.

Best regards,
- PayPal Team.

Scam email in original HTML format:

PayPal Scam Email


Bogus Form:
Fake PayPal Form

Commentary:
This email is NOT from online payment service, PayPal. The email looks very convincing and includes seemingly official logos and text designed to fool recipients into believing that it is a legitimate message from PayPal.

The message claims that PayPal customers are required to log into their account and update billing information or risk having their account suspended. Recipients are urged to click a link in the fraudulent email. This link leads to a bogus website that is cleverly disguised to resemble a real PayPal Login page. Victims who login to this fake web page are asked to provide sensitive personal information including credit card details and addresses.

Information entered into the form can be collected by the criminals running this scam and used in fraudulent transactions or to steal the victim's identity.

PayPal would never send an email asking customers to provide sensitive information such as credit card details. The company has more information about these phisher scam emails on its website.