The 'fake' PayPal emails that are tricking Brits out of thousands - warning signs and how to report it ..!
Action Fraud says a number of "professional" emails claiming to be from PayPal are doing the rounds - this is how to stay protected
A new wave of suspicious emails claiming to be from online payments platform PayPal are back in circulation, the UK's security body has warned, and they can empty out your bank account in just seconds.
Action Fraud UK - the government's cyber crime agency - has warned of a particularly high number of PayPal phishing emails that are landing in people's inboxes, claiming to be from the electronic payments company.
The emails claim 'unusual activity' has been flagged on their accounts - although this is not the case.
Once clicked on, victims are redirected to a fraudulent version of the PayPal website - one that looks remarkably similar – where they are asked for sensitive data to resolve the alleged ‘issue’.
A PayPal spokesperson told Mirror Money: "At PayPal we go to great lengths to protect our customers in the UK, but there are still a few, simple precautions we should all take to avoids scams."
“We do contact our customers by email (e.g. for marketing purposes), however if the email is about an account limitation, then the customer should: open their internet browser, visit www.paypal.co.uk and login.
"If we require the customer to take any action, we will communicate that in the secure message centre.”
Deputy Head of Action Fraud, Steve Proffitt added: "Fraudsters are increasingly targeting people with very professional looking emails warning that online accounts have been compromised and asking you to click on links to verify your details.
"Action Fraud is now warning people about fake emails that appear to have been sent from PayPal. These emails ask you to log in and review your Paypal account. It is difficult to know if they are fake as they look so professional.
"If you have received one of these fake emails, we are advising people not to follow the links in the email as by logging into your account, you are providing fraudsters with your login details which gives them access to your account.
"Always contact the fraud department of the organisation directly from the contact details you have on your statements or bank card and explain the contents of the email you have received."
What the emails say
In most cases, the emails open with the line: 'We noticed unusual activity in your PayPal account'.
The emails appear incredibly professional - and feature PayPal's trademark font, logo and layout.
In a tweet, Action Fraud said: "This fake PayPal email even made us look twice! Well designed, slick and personalised. The link leads to a fake login page! #Phi shing".
Have you received this message? Let us know in the comments below
Other customers have reported emails claiming their accounts had been either 'suspended' or 'lifted'. These featured prominent typos which experts warn should not be ignored.
"We've limited your access and the reason is the last login attemp , we've limited your account for security reasons.
"To fix this problem you have to login and update your personal informations by following this link."
The emails appear incredible convincing
In several more cases, the scammers claimed the victim had "added a new email address to their account". This is a common tactic used by criminals to instill fear or panic, prompting the user to click on the email in haste.
Have you received this message?
But it doesn't end there.
One email doing the rounds claims you've made a payment - which of course is not the case.
These emails employ similar tricks to those used by banking fraudsters - which alerts users to unidentified transactions.
In some cases customers are not even addressed
Dear,
You sent a payment of 50.87 on 17-May-2017 to World of Tanks
This charge will appear on your credit card statement as payment to PAYPAL *WWTanks.
It may take a few moments for this transaction to appear in your account.
How to tell if the email is genuine or a hoax
There are several warning signs to watch for such as suspicious email addresses and typos (Photo: Getty)
Check the email address - in most cases fraudulent addresses will contain multiple letters and numbers and will appear unusually long.
Be aware of any emails and pop-up windows asking you to click on a link or provide personal information directly in response.
A genuine email will only ever address you by your full name at the beginning – anything that starts ‘Dear customer’ should immediately raise your suspicions.
Do not reply or open any attachments that arrive with the email.
If you suspect something is wrong, get in touch with the firm directly to verify it.
What PayPal says you should do
Scammers often employ tactics to try to force a false sense of urgency (Photo: PA)
"Phishing" is an illegal attempt to "fish" for your private and/or sensitive data. In most cases the criminals will claim to be from a well-known company such as PayPal.
If you believe you've received a phishing email, follow these steps:
Be aware of any emails or text messages that ask you to provide personal information directly in response.
Look out for spelling mistakes, which are a common tell-tale sign of a fraudulent message.
A genuine PayPal email will only ever address you by your full name at the beginning – anything that starts ‘Dear customer’ should immediately raise your suspicions.
Scammers often use a false sense of urgency to prompt you to act on a phishing email such as hyperlinks asking you to login to your account. If you want to check that PayPal has tried to reach you, go to PayPal.co.uk and log into your account normally. You will have a secure message waiting if PayPal does need you to take any action.
If you have any concerns regarding an email you have received, you should send it to [email protected] .
Paypal Inc. Credit Cards Crime Scams Fraud