Skip to main content
No. of Recommendations: 6
Got a pretty good phishing attempt supposedly from PayPal in my email account today. Generally, you can spot them because the grammar or spelling is bad, but this one is pretty good. Here's what it says:

Due to recent fraudulent transactions, we have issued the following security requirements. It has come to our attention that 98% of all fraudulent transactions are caused by members using stolen credit cards to purchase or sell non existent items. Thus we require our members to add a Debit/Check card to their billing records as part of our continuing commitment to protect your account and to reduce the instance of fraud on our website. Your Debit/Check card will only be used to identify you. If you could please take 5-10 minutes out of your online experience and renew your records you will not run into any future problems with the PayPal® service. However, failure to confirm your records will result in your account suspension. We are requesting this information to verify and protect your identity. Federal regulations require all financial institutions to obtain, verify, and record identification from all persons opening new accounts or obtaining ongoing payment services. This is in order to prevent the use of the banking system in terrorist and other illegal activity. For these reasons, PayPal® will utilize services provided by various credit reporting agencies to verify the information you submit to us. Once you have updated your account records your pending PayPal® account transactions will not be interrupted and will continue as normal.

I've already reported it to eBay/PayPal as a phishing attempt, but this one is pretty slick. Note, though, that it says that people are using stolen credict cards to either buy goods or sell non existent goods. Call me crazy, but I have never yet needed to have a credit card to sell something.

Then, of course, they need my debit card to prove that I'm me. Um, how will that prove anything exactly? All it proves is that someone at this email has a debit card and has nothing whatsoever to do with proving that I am the person to whom the PayPal account belongs.

This one seems extra dangerous to me, though, because it is looking to get directly into my checking account and not bothering with attempting the credit card fraud first, so once the money is gone from my account, they have it even if the bank can put it back. In that case, it's the bank that's out the money, but the crook still has it.

Just thought I'd post a warning to everyone as these phishers are getting more sophisticated as time goes on.
Print the post  


UGC Disclosure Notice Regarding Credit Card Posts
Community board discussions about credit cards are not provided or commissioned by banks who may have advertising relationships with The Motley Fool. Responses have not been reviewed, approved or otherwise endorsed by the bank advertiser. It is not the bank advertiser's responsibility to ensure all posts and/or questions are answered.
TMF Credit Center
The Motley Fool Credit Center arms you with real tools and simple messages, that will help you in every credit situation.
What was Your Dumbest Investment?
Share it with us -- and learn from others' stories of flubs.
When Life Gives You Lemons
We all have had hardships and made poor decisions. The important thing is how we respond and grow. Read the story of a Fool who started from nothing, and looks to gain everything.
Contact Us
Contact Customer Service and other Fool departments here.
Work for Fools?
Winner of the Washingtonian great places to work, and Glassdoor #1 Company to Work For 2015! Have access to all of TMF's online and email products for FREE, and be paid for your contributions to TMF! Click the link and start your Fool career.