PayPal: Unapproved credit card payment (phishing warning)

Fraudsters are once again trying to trap PayPal customers with an email supposedly from PayPal.

This time the customer should log in again via a link so that they can access their account again. The link is of course provided by the sender.

This email is:

The content of the email in plain text is:

Subject: Verify PayPal account

Hi dear client!

Please help us get your PayPal account back in order.

Until then, we have temporarily limited access to your PayPal account.

What's up?

We recently learned of possible unauthorized credit card use with this PayPal account.
For your protection, we have restricted access to your account.

Processing number: PP-494-582-728-715

What do I have to do now?

Due to suspicious activity in your PayPal account, you should prove yourself as the legal owner.
After you have confirmed yourself, you can use your PayPal account as usual.

PayPal wishes you lots of fun with risk-free spending!

Log in PayPal

It is clear that the email was first written in another language and then translated into German.

---

---

But now there are also attempts at fraud that are in perfect condition, for example our case yesterday . The email address ending with @paypal.com intended to give the entire email a touch of credibility.

Protection software warns!

Our Kaspersky protection software warns directly: the link hides a phishing address! Therefore, the page is blocked immediately when it is updated.

Without the appropriate software, a fraudulent page opens from the email, which is based on the PayPal login. Here you have to confirm your identity because suspicious activities were allegedly discovered during the transactions.

But be careful: THIS is not PayPal !

If we click further, we come to the following page:

This site is a 1:1 replica and you could actually fall for it if you weren't so skeptical.

Here you only have one option: log in.

Of course, this information goes directly to the scammer and no matter how many times you try to log in, as soon as you press “Enter” you always come back to this page.

All other buttons (private customers, business customers, send money, register for free, open a business account) are not clickable and are only intended to give the impression that it is the official PayPal page

General phishing warning:

• Phishing emails generally try to appear as if they come from the relevant company . Fraudsters use these to try to get personal data, preferably bank credit cards or other payment data.
• Protection software is helpful! With updated databases and appropriate heuristics, malicious sites are often blocked. We use Kaspersky protection software .
• The real “art” of these emails is the story with which the recipient is supposed to trust the email and open the inserted link. Expression, grammar and spelling, as well as plausibility and individuality play a very important role here. Especially in the recent past, there have been an increasing number of emails that shined with individuality: they could address the recipient with the correct name and also provide actual address and personal data.
• However, you can generally note: Banks, payment and purchase portals never ask you to log in to the account using a built-in link! In addition, although a generic salutation is always an indication of phishing, an existing correct salutation is not proof of the authenticity of an email .
• Never log in via a link that is sent by email, but always type the relevant page by hand into the address bar of your browser and log in there. If there are actually announcements of the relevant service, they will be displayed there. In addition, if possible, you should also refrain from carrying out banking transactions via public/third-party WiFi networks , as you never know exactly whether (and in an emergency from whom) these networks are being used be logged.
• Never enter real data in the form fields! Under certain circumstances, the data can even while typing without having to confirm with “continue”.