General Discussion

PsychoBabble

(837 posts) Sat Mar 4, 2017, 02:43 PM Mar 2017

WARNING - Sophisticated "PayPal" Phishing email ...

I have a high-gain radar when it comes to phishing emails. I received one that APPEARED to be a RECEIPT from PayPal last night.

It was NOT from PayPal.

The layout was VERY SIMILAR to PayPal receipts. I compared it to a real one to confirm my feeling about it.

It is NOT a Paypal receipt; links go off to weird links. You don't wanna go there.

I knew I had not made the purchase, and checked my PayPal to confirm.

Of course, phishers play on these instincts, since your FIRST instinct is to click through on the fake receipt to see what's up in your initial "what the hell?!" moment.

Be on alert. This phish is one of the best layouts I've seen. Most are obvious phishing. If you get a "receipt" from PayPal, and don't recognize the purchase, DO NOT CLICK on anything in the email.

Stay safe out there, DU'ers!

[UPDATE]
Thanks for all the great comments and tips below. The main reason I posted this was because of the VISUALS, for a casual user - much more realistic-looking than others I have received once you open the email.

13 replies

= new reply since forum marked as read

Highlight:

WARNING - Sophisticated "PayPal" Phishing email ... (Original Post) PsychoBabble Mar 2017 OP

Always better not to click on embedded links in an email, even if the URL looks valid. Thanks for still_one Mar 2017 #1

thank you! renate Mar 2017 #2

All GENUINE emails would have this... golfguru Mar 2017 #3

Report the phishing attempt to the legitimte site before deleting. WillowTree Mar 2017 #9

Already done that! golfguru Mar 2017 #12

Please forward to spoof@paypal.com HAB911 Mar 2017 #4

PayPal will imbed your name in the email. In doubt, forward it to SPOOF@PAYPAL.COM TheBlackAdder Mar 2017 #5

I actually called the Paypal main office and was told Lint Head Mar 2017 #6

I avoid PayPal anyway, always. ananda Mar 2017 #7

Why? Paypal is best method for.. golfguru Mar 2017 #13

thank you!.... samnsara Mar 2017 #8

Thoughtful heads up, thanks n/t Smickey Mar 2017 #10

Got It As Well colsohlibgal Mar 2017 #11

still_one

(92,201 posts)

1. Always better not to click on embedded links in an email, even if the URL looks valid. Thanks for

Reply to PsychoBabble (Original post)

Sat Mar 4, 2017, 02:45 PM

Mar 2017

the heads up

renate

(13,776 posts)

2. thank you!

Reply to PsychoBabble (Original post)

Sat Mar 4, 2017, 02:50 PM

Mar 2017

golfguru

(4,987 posts)

3. All GENUINE emails would have this...

Reply to PsychoBabble (Original post)

Sat Mar 4, 2017, 02:56 PM

Mar 2017

Always examine the address you are asked to click on. For example if the email is genuine from Paypal, the web address will begin with Paypal.com/xxxxxx .

Before you click the "SEND" button on your email, examine the email address where you are sending your email, very carefully. If it does not begin with your bank or other business you deal with, STOP, and delete.

WillowTree

(5,325 posts)

9. Report the phishing attempt to the legitimte site before deleting.

Reply to golfguru (Reply #3)

Sat Mar 4, 2017, 03:35 PM

Mar 2017

You can find the address to forward these to for review on the legit sites. Just this AM I forwarded an obvious phishing attempt to Bank of America (where I don't have and never have had any accounts). In this case, a PayPal phishing attempt should be forwarded to spoof@paypal.com . Don't download any graphics and never, ever click on any links. Just forward them and then delete.

golfguru

(4,987 posts)

12. Already done that!

Reply to WillowTree (Reply #9)

Sat Mar 4, 2017, 04:24 PM

Mar 2017

I wrote my first computer code way back in 1961, using Fortran at U of Iowa. Point being, I am old and experienced with computers. I can spot a phishing email a mile away even without my reading glasses.

I have already reported to spoof@paypal.com. That email could have easily fooled many, but did not fool me for a second as soon as I examined the associated web address.

HAB911

(8,893 posts)

4. Please forward to spoof@paypal.com

Reply to PsychoBabble (Original post)

Sat Mar 4, 2017, 02:59 PM

Mar 2017

that sends them the headers required to track the perps

TheBlackAdder

(28,203 posts)

5. PayPal will imbed your name in the email. In doubt, forward it to SPOOF@PAYPAL.COM

Reply to PsychoBabble (Original post)

Sat Mar 4, 2017, 02:59 PM

Mar 2017

.

Never click on banking links.

Always open a new browser session and type in their URL and verify that there are no typos.

.

Lint Head

(15,064 posts)

6. I actually called the Paypal main office and was told

Reply to PsychoBabble (Original post)

Sat Mar 4, 2017, 03:08 PM

Mar 2017

about how phony the email was. They use your actual name when emailing you. The crooks use part of you email address as your name. Paypal said to always check their sight and your account.

ananda

(28,862 posts)

7. I avoid PayPal anyway, always.

Reply to PsychoBabble (Original post)

Sat Mar 4, 2017, 03:11 PM

Mar 2017

golfguru

(4,987 posts)

13. Why? Paypal is best method for..

Reply to ananda (Reply #7)

Sat Mar 4, 2017, 04:27 PM

Mar 2017

paying on-line to small or not-well-known businesses. They never see your actual credit card details. And on top of that, Paypal payment guarantees to stand with you if you think the product was not as described or was defective.