Phishing messages often begin with impersonal greetings. “Dear user” or “Hello, PayPal member” are definitely suspect. Messages from PayPal will always use the full name listed in your PayPal account.
Attachments can contain malware, so never open them unless you’re 100% sure they’re legitimate.
Don’t heed pleas for you to take fast action or warning you of problems that will compromise your account status.
If the web address is scrambled or looks suspicious, don't click on anything and leave.
Never provide personal, credit card or account info via email, text or phone.
Typos, misspellings and incorrect grammar are common in phishing messages.
An authentic PayPal email contains our company logo and a checkmark in your email inbox view. This helps you quickly recognise a legitimate PayPal email and more easily identify phishing messages. Many email service providers like Apple, Gmail and Yahoo support companies using their logo to help consumers identify real messages.
One letter used to make a big difference, but now the ”s” doesn’t always mean the site is legitimate because scammers can build encrypted sites, too.
Authentic sites will have this icon in the address bar, but many fake sites do, too.
Phishers create fake websites with URLs that are very similar to the real one. To be safe, enter the URL you want to visit manually.
This can prove challenging for even the most savvy digital natives. So, we've put together a tutorial to help you see the signs.
Account info, passwords and validation codes are for your eyes and ears only. Even a customer service rep shouldn’t ask for them.
Scammers can easily fake a Caller ID, so don’t rely on it as confirmation a call is legitimate. Just because it says “PayPal” doesn’t necessarily mean the call is from us.
Scammers use automated systems to make voice calls. If an automated call provides a number and asks you to call back, don’t. Only contact PayPal via the Contact page in our Help Centre.
Learn more
Read more helpful info about protecting your info from phishing and fakes.
What to do if you receive a phishing message
Detect, avoid, report. That’s the best plan to stay secure.
Spotting phishing and other fake messages
There are many signs that can indicate a message may be fake.
Find answers to commonly asked questions and get help with your PayPal account.
Spend, send and manage your transactions with confidence.