Industry guru Dave Taylor offers free tech support on a wide variety of technical and business topics, including HTML, Apple iPhone, online advertising, Cascading Style Sheets, Web design, management, Unix, Linux, search engine optimization, online dating, Mac OS X, shell script programming and Microsoft Windows.

How can I recognize fake Paypal email?

Dave, I get tons of email that looks like it's from Paypal, asking me to update my account record, check that things are configured alright, or even to "notify" me that a new email address has been "added" to my account. Sheesh! How can I recognize real Paypal email and separate it out from all the phishing and fake messages in my inbox?

Dave's Answer:

I know what you mean. I get a ton of this junk too, and I have learned to never click on a link in an email message. If I think it's legit, I'll open my browser and directly type in the Paypal URL: https://www.paypal.com/ (note that it's 'https' not 'http' too).

Paypal itself has some useful tips too:

10 ways to recognize fake (spoof) emails

Generic greetings. Many spoof emails begin with a general greeting, such as: "Dear PayPal member." If you do not see your first and last name, be suspicious and do not click on any links or button.
A fake sender's address. A spoof email may include a forged email address in the "From" field. This field is easily altered.
A false sense of urgency. Many spoof emails try to deceive you with the threat that your account is in jeopardy if you don't update it ASAP. They may also state that an unauthorized transaction has recently occurred on your account, or claim PayPal is updating its accounts and needs information fast.
Fake links. Always check where a link is going before you click. Move your mouse over it and look at the URL in your browser or email status bar. A fraudulent link is dangerous. If you click on one, it could:
- Direct you to a spoof website that tries to collect your personal data.
- Install spyware on your system. Spyware is an application that can enable a hacker to monitor your actions and steal any passwords or credit card numbers you type online.
- Cause you to download a virus that could disable your computer.
Emails that appear to be websites. Some emails will look like a website in order to get you to enter personal information. PayPal never asks for personal information in an email.
Deceptive URLs. Only enter your PayPal password on PayPal pages. These begin with https://www.paypal.com/
- If you see an @ sign in the middle of a URL, there's a good chance this is a spoof. Legitimate companies use a domain name (e.g. https://www.company.com).
- Even if a URL contains the word "PayPal," it may not be a PayPal site. Examples of deceptive URLs include: www.paypalsecure.com, www.paypa1.com, www.secure-paypal.com, and www.paypalnet.com.
- Always log in to PayPal by opening a new web browser and typing in the following: https://www.paypal.com/
- Never log in to PayPal from a link in an email message.
Misspellings and bad grammar. Spoof emails often contain misspellings, incorrect grammar, missing words, and gaps in logic. Mistakes also help fraudsters avoid spam filters.
Unsafe sites. The term "https" should always precede any website address where you enter personal information. The "s" stands for secure. If you don't see "https," you're not in a secure web session, and you should not enter data.
Pop-up boxes. PayPal will never use a pop-up box in an email as pop-ups are not secure.
Attachments. Like fake links, attachments are frequently used in spoof emails and are dangerous. Never click on an attachment. It could cause you to download spyware or a virus. PayPal will never email you an attachment or a software update to install on your computer.

If you receive a spoof email, forward the entire email - including the header information - to Paypal's fraud team at: spoof@paypal.com, then delete it from your mailbox. Please note that the automatic response you get from them may not address you by name.

Help others find this article at Del.icio.us, Digg, Netscape, Reddit, and Stumble Upon

Categorized: Computer and Internet Basics (Article 4026)
Tagged:
Previous: What's the deal with Google Sitemaps?
Next: Windows XP Professional x64 Edition?

Subscribe!

Never miss another useful Q&A article again! Subscribe to AskDaveTaylor with Google Reader.

Comments

i got one few days back and if i wouldnt had read this article i must have been coned.
thanks

Posted by: pipes at March 31, 2006 2:11 AM

I just received a spoof email from my friend, I was shocked that this was even possible. He told me he used a site called hoaxMail (hoaxmail.co.uk</a)) and looking into it it seems companies like this are making it increasingly easy to spoof an email address.

Worrying?

Posted by: Grant Holden at May 5, 2007 6:27 AM

thanks for the heads up advice
more or less, people just need to use some common sense and think things twice, or if it is to do with oney, think three times before purchasing online or at other venues

Posted by: sunchip at August 16, 2007 7:03 PM

hi dave ...actually i am new to paypal and mone transfer and all that stuff..... i have an account ballance in an online survey site and i want to redeem the money and transfer to my paypal account....when i go to redeem option it asks for "paypal email" what shall i write there coz i dont have any paypal email although i have a paypal personal account! is it my paypal username? (which may be my email id for my webmail site)??? plz help me out

Posted by: abhinav at December 8, 2007 4:33 AM

como crear una cuenta paypa

Posted by: maryoris at January 29, 2008 2:14 PM

Just rec'd one today. Thought it looked kind of suspicious, googled it, and found that it was a scam.

Thanks!

Posted by: Isaiah at May 14, 2008 1:31 PM

i don't have an account with pay-pal but i keep getting e-mails all the time wanting me to give info about my account i wonder how to get in touch with them to tell them not send any mor e-mails to my address it is getting pretty old...

Posted by: lowell thomas at June 23, 2008 3:53 PM

Hey, great info here. I am going to give a link to this on my blog.

Posted by: Jeff at August 21, 2008 1:03 PM

just got one too & checked the link with left click, properties..
was mail from austrianonlines with a processinglogin
at paypa!
HA! paypa? think NOT! reported as spam :-P

Posted by: cyn at February 13, 2009 8:12 AM

I received an email from paypal@534.com:
June 09, 2009: We have reason to believe that your account was accessed by a third party. Because protecting the security of your account is our primary concern, we have placed limited access to sensitive PayPal account features. We understand that this may be an inconvenience but please understand that this temporary limitation is for your protection.

Click here to Remove Account Limitations

The thing that got my attention was the email address is from a site: 534.com

Posted by: Ryan Tolentino at June 12, 2009 9:15 AM

A great way to check where an email is going to send you and prevent ending up in the wrong place is to look in the lower left hand corner of your browser when you hover over a link.

You should be able to preview and diagnose whether or not it's the right place by looking at the domain name. In this case... paypal.com/something

Posted by: Rena Fredricksen at July 21, 2009 3:26 PM

Thanks for the info and the paypal email address to send fake emails too. I just got a fake paypal email today.

Posted by: Louise at August 27, 2009 12:07 AM

I have a lot to say, but ...

I have a lot to say, and questions of my own for that matter, but most of all I'd like to say thank you for all your efforts on this Web site by buying you a chai!

I do have a comment, now that you mention it!