PayPal's new scam uses real emails to deceive you - NEWS

NEWNow you can listen to News articles!

There is a new Paypal Phishing scam that makes the rounds, and it is so convincing that even security users are trapped in it. Unlike the typical scams plagued by typographic errors and false domains, it uses PayPal’s own email system to send an alert that looks 100% real.

It is possible that he receives a message such as: “He added a new address. This is just a rapid confirmation that he added in his Paypal account.”

Except … you didn’t. What if you don’t even have a PayPal account? This is what this scam implies, why it works and how to protect yourself.

Register for my free Cyberguy report
Get my best technological tips, urgent security alerts and exclusive offers delivered directly to your inbox. In addition, you will get instant access to my definitive scam survival guide, free when you join.

False avemo accounts are stealing donations from real beneficial organizations

PayPal application on a smartphone (Kurt “Cyberguy” Knutsson)

Why Paypal’s last Phishing scam is so convincing

Most Phishing scams try (and fail) to impersonate large companies. I have probably seen the classics: strange grammar, suspicious email addresses, Microsoft spelling with a “k”. They are ridiculously bad. But this scam turns the script because use Paypal against him. This is how the scam works:

Exploitation of real characteristics: The scammers abuse the tools “add address” or “money application” of PayPal. When you enter your email, you can activate real emails from the real domain of PayPal. And this works even if you don’t have a PayPal account.

Passing the filters: Because these emails come directly from paypal servers (service@paypal.com), all safety checks pass and seem legitimate in their entrance tray.

Lack of suspicion: Some versions do not contain phishing links at all, only the telephone number of a scammer, making them even more difficult to detect.

Panic bait: The message often states that a new address was added, or a great payment is being processed, calling your attention and causing a quick reaction.

Follow -up attacks: After the initial email, the scammers can contact it later pretending to be PayPal support. Some urge you to click on a link to “secure your account”, which leads to a false login page designed to steal their credentials.

Paypal’s dark side and how to stay safe

Real examples of Paypal’s phishing scam in action

This scam has been reported by dozens of users in the Reddit and Cybersecury forums. A REDDIT user Posted a detailed thread in R/Scams Showing pHishing electronic email screenshots that seem directly from the official PayPal address.

Phishing email sent from service@paypal.com (Reddit)

In a newer and more sophisticated turn, the scammers are eliminating the links completely. Instead, they include a phone number and ask him to call. Once you do, it is connected with a false representative of PayPal who says they need to verify their identity. Then they indicate that I download what seems to be a PayPal brand support tool, but in reality it is a personalized remote access application housed on a different server. And once it is installed, it gives the scammer full access to your device.

Anydesk personalized screen capture with a PayPal logo (Reddit)

New Phishing Scam Outsmarts Security Codes to steal your information

How scammers are kidnapping PayPal’s system to send false alerts

This part is still a mystery. With the typical scams of PayPal’s invoice, the content is closely controlled, which means that it cannot normally change the email structure or messages. However, these new emails suggest that scammers may be exploiting internal characteristics, such as commercial tools or API fields, to place personalized content on alerts generated by PayPal. It is not just Phishing, he is putting together a legitimate system to create confidence and evade detection.

Why this Paypal Phishing attack is so dangerous

This scam is especially effective and dangerous because emails come directly from PayPal’s official servers, which makes it difficult to distinguish them from legitimate messages. Since the address of the sender and brand are authentic, the recipients are more likely to trust communication without suspicion.

Scammers also use urgent language that creates a sensation of panic, such as warnings about unauthorized activity or great positions. This pressure encourages people to act quickly already before considering completely if the alert is genuine.

In addition, the scam often implies monitoring contact through calls or text messages of people who pass by PayPal personnel, further exploiting the initial confusion and increasing the possibilities that victims that give up confidential information.

Get the News business on the fly by clicking here

Illustration of a hacker at work (Kurt “Cyberguy” Knutsson)

How to protect yourself from the scam of Venmo, Zelle and Cash Applications that can eliminate your savings in seconds

How to protect from PayPal’s Phishing Scam

Even if you are vigilant, you can still be white. Here we show you how to stay safe:

1. Do not click the links in suspicious emails, even if they look real, and use strong antivirus software. If you receive a PayPal alert that you did not expect, go to PayPal writing Paypal.com in your browser or using the official application. Never click on the links or mark the phone numbers provided in the email.

The best way to safeguard the malicious links that install malware, which potentially access their private information, is to have an antivirus software installed on all its devices. This protection can also alert it to the PHISHING Electronic Correos and Ransomware scams, maintaining their personal information and their safe digital assets. Get my elections for the best antivirus protection winners 2025 for your Windows, Mac, Android and iOS devices.

2. Enable two factors authentication (2FA): With attention 2fa To you PayPal And email accounts give you a second defense layer, even if your password is committed.

3. Use a password administrator: The use of a password administrator is the best way to ensure that each login you use has a unique and safe password. Without repetitions it means that there is no chain reaction if a site is pirate. Get more details about me The best password administrators reviewed by experts from 2025 here.

4. Verify your account manually: If you ever have doubts, simply log in to your PayPal account directly. Review Recent activity And see if something looks at. There is no need to trust only alerts.

5. Report the scam: Forward Suspicious PayPal messages A phishing@paypal.com. You can too Inform Phishing attempts to FTC.

6. Use a personal data disposal service: Since Phishing scams such as PayPal’s recent scam often addressed to the personal information that scammers are collected from data corridors and people search sites, using a good reputation data removal service can help reduce their exposure. See my best selections to obtain data disposal services here.

Get a free scan To know if your personal information is now available on the web.

Kurt’s Key Takeways

This phishing scam is dangerous because it uses PayPal’s real emails sent from service@paypal.com. The scammers exploit the incorporated characteristics of PayPal to send real notifications that seem legitimate. What makes it especially cunning is the absence of links, on the other hand, these emails include a phone number, which makes them pass through spam filters. When he calls, he is connected to a false PayPal representative who presses him to download a remote access tool disguised as support software. The safest movement? Don’t click, don’t call. Just go directly to Paypal.com and see your account manually.

Click here to get the News application

If you have seen a version of this scam (or has almost fallen in love), make us know by writing to us in Cyberguy.com/contact

To obtain more technological tips and safety alerts, subscribe to my free Cyberguy Report newsletter when you head Cyberguy.com/newsletter

Ask Kurt a question or let us know what stories we would like to cover

Follow Kurt in his social channels

Facebook
YouTube
Instagram

Answers to Cyberguys more facts:

What is the best way to protect your MAC devices, Windows, iPhone and Android to be pirate?
What is the best way to stay private, safe and anonymous while navigating the web?
How can I get rid of robocalls with data elimination applications and services?
How do I eliminate my private internet data?

New Kurt:

Try the new Cyberguy games (crosswords, words searches, trivia and more!)
Cyberguy exclusive coupons and offers

Kurt “Cyberguy” Knutsson is a award -winning technological journalist who has a deep love for technology, equipment and devices that improve life with their contributions for News & News Business Startzing Mornings in “News & Friends”. Do you have a technological question? Get the free Kurt’s free newsletter, share your voice, an idea of the story or comment on Cyberguy.com.

Breaking News

Needle-free diabetes management could be on the horizon, study suggests

How Trump is trying to suppress voting on college campuses before November

Grotesque Trump effigies burn in flames at Spanish festival

Trump and Netanyahu split over gas field attack, raising questions about whether they will unite

US Mint May Begin Producing Trump Commemorative Gold Coin After Arts Commission Approves Design

Joe Rogan Drops Wild Trump Impression When Knocking on the Door

NBA legend Dennis Rodman to be inducted into WWE Hall of Fame for infamous wrestling appearances: report

Nebraska ends decades of March Madness anguish with first NCAA tournament victory

Nearly 36 Million March Madness Brackets Broke on First Day as Surprises Wreak Havoc

UNC collapses late and blows 19-point lead in shocking overtime loss to VCU

PayPal’s new scam uses real emails to deceive you