Phishing emails and hoax websites ask you to click on links, contact them, or open attachments to update your account information, confirm your password or confirm a purchase you haven’t made. When you follow the links, the sites are unsecured, letting the fraudsters collect your login details and/or financial information.
Phishing scams almost always imitate well-known companies and include company logos, official-looking email templates, or phone call scripts similar to genuine company communications. There are some things to look for that can help you tell the difference.
If you’ve received a phishing email or stumbled across a hoax website, even if you’re not sure, forward it to us at phishing@paypal.com and we’ll investigate it. Make sure you forward the email (don’t send it as an attachment) so valuable tracking information about the source stays intact. Once done, delete the email permanently from your inbox – never click any links.
Always manually enter the PayPal URL into the address bar in your browser.
Visit the Contact or Help link on any PayPal webpage to get in touch.
Services like WebAdvisor, WOT and Safe Web can alert you before you click.
1. Run an antivirus scan on your system to make sure you didn’t pick up any malware.
2. Change all your passwords, PINs, and security questions immediately.
3. Report it to the police, PayPal, your bank, and credit card providers.
4. Keep an eye on your online account statements for unusual activity.
Strong passwords and PINs keep your account safer.
Keep your computer and mobile device secure.
Watch out for scams and learn to protect yourself.