New PayPal fraudulent emails campaign

Cookie Settings
Type of Cookie	Purpose	Third party involved	Preference
Technical Cookies	These are cookies that allow the website to function correctly.	(Liferay/Dynatrace, Google). You can obtain more information about the third party cookies that are installed in the Cookies Policy and in the following links: Dynatrace (Liferay): https://www.dynatrace.com/support/help/how-to-use-dynatrace/data-privacy-and-security/data-privacy/cookies/ Google: https://policies.google.com/technologies/cookies?hl=en	Enabled
Preference or customization cookies	They allow the user to remember information so that the user can access the service with certain characteristics that can differentiate their experience from that of other users.	Google https://policies.google.com/technologies/cookies?hl=en	Disabled Enabled
Analysis or measurement cookies	They are those that allow us to quantify the number of users and therefore carry out the measurement and statistical analysis of the use made by users of our website.	More information about Google Analytics can be found at: https://developers.google.com/analytics/devguides/collection/analyticsjs/cookie-usage?hl=en	Disabled Enabled
Behavioral Advertising Cookies	These are cookies designed and used for the management, in the most efficient way possible, of the advertising spaces shown to the user, through the advertising service in response to their profile and interests.	Google uses cookies for advertising purposes, such as serving and rendering ads, personalizing ads (based on the user's ad settings at g.co/adsettings), limiting the number of times an ad is shown to a user, hide ads that the user has indicated they don't want to see again, and measure the effectiveness of the ads. Doubleclick: In the case of Google Ad Manager or Google Marketing Platform advertising products, third-party cookies used for advertising purposes may be associated with doubleclick. net or to country-specific Google domains, such as google.com. https://support.google.com/searchads/answer/2839090?hl=en	Disabled Enabled
More information about our Política de Cookies.
Enable all Save selection

01/09/2016

New PayPal fraudulent emails campaign

Fraudulent emails that claim to be from PayPal with the aim of stealing personal information and bank details of users have been detected.

Send Print

The detected campaign reaches the user through an email in English that appears to be a notification from PayPal informing the user that their account has been temporarily blocked due to unusual login activity. The message includes a link to reactive the account.

The process goes on to redirect the user to a website posing as PayPal where they are requested in Spanish for their PayPal login information. Once the user enters their PayPal login details, they are asked to fill out a form with their personal information. Following this, the user is asked to enter their credit card details.

Once the form is completed and the "Continuar" button selected, the user is directed to a similar website and informed that the account has been reactivated correctly. After a few seconds, the user is redirected to the official PayPal website. This last step helps convince the user that the process was carried out legitimately. As the image shows, the official PayPal website has a personal electronic certificate that is different to that of the fraudulent website.

If you have received this email and have entered your details on the fraudulent website, you should change your PayPal login information immediately and notify PayPal as soon as possible on 900 801 665 (option 2 followed by option 2 once again).

You should also notify your bank in case the financial information linked to your PayPal account has been obtained.

If you use the same password for other services, you should change it accordingly, especially if it is linked to an email account registered on PayPal.

If you have any questions, please do not hesitate to contact us at the following email address: InfoSecurity@fcc.es