PayPal users are under attack from scammers employing increasingly sophisticated tactics.
Fraudsters are using deceptive emails, often appearing to originate from PayPal itself, to trick users into revealing sensitive information or making fraudulent payments. These emails may claim users owe money for nonexistent purchases, prompting them to click on links that lead to genuine-looking PayPal pages designed to steal credentials.
Another method involves exploiting PayPal's address settings to send fake purchase notifications, attempting to gain remote access to victims' computers for financial theft or malware installation.
Beyond email, scammers are also placing fraudulent ads on search engines like Google, posing as customer service websites. These ads utilize PayPal's 'No-Code-Checkout' feature to create fake payment links, further deceiving users.
Cybersecurity experts urge users to be vigilant, independently verify any suspicious communications directly through the official PayPal website, and avoid clicking on links in emails or ads.