AltoActivoTendencia
High Risk
75%
PayPal Phishing Scam
Credential-harvesting pages impersonating PayPal login and dispute flows.
#phishing#financial#email
Resumen de la amenaza
PayPal phishing remains one of the most reported financial lures. Attackers clone login pages, send fake payment alerts, and capture credentials plus MFA tokens through reverse-proxy kits.
Comportamiento del ataque
- Spoofed payment notification emails
- Fake dispute resolution portals
- Real-time credential relay to attackers
Métodos de infección
- Email links
- SMS smishing
- Malvertising on search results
Síntomas e indicadores
- Unexpected PayPal security alerts
- Login failures after visiting email links
- Unauthorized transactions
Mitigación inmediata
- Do not enter credentials from email links
- Report messages to PayPal and your email provider
- Change password from official app only
Guía de eliminación
- Revoke active sessions in PayPal settings
- Enable hardware MFA
- Monitor linked bank accounts
Métodos de prevención
- Use web protection and phishing modules
- Bookmark official login URLs
- Verify sender domains carefully
Indicadores de telemetría
- Typosquat domains with paypal substring
- Newly registered SSL certs on lookalike hosts
Log in directly at paypal.com—never through email links. Legitimate messages appear in your PayPal message center when logged in.