How do I know if a PayPal email is real?

Real PayPal emails come from @paypal.com, address you by your full name, and never ask you to click a link to verify your account. Log into PayPal directly to check for any actual notifications.

What should I do if I fell for a PayPal scam?

Change your PayPal password immediately, enable two-factor authentication, report the transaction to PayPal's Resolution Center, contact your bank if a linked account was compromised, and file a report with the FTC at reportfraud.ftc.gov.

Can PayPal refund money lost to scams?

PayPal may refund transactions made through their platform if reported promptly through the Resolution Center. However, money sent via Friends & Family or transferred outside PayPal is typically not recoverable.

Are PayPal invoice scams common?

Yes, fake PayPal invoices are one of the most common PayPal scams. Scammers send invoices for products you never ordered, hoping you will call the listed phone number where they will try to steal your information.

Paypal Scam Scams | GetCyberRight

Overview

PayPal scams are among the most common online fraud schemes, targeting the platform's 400+ million users worldwide. Scammers exploit PayPal's trusted reputation by sending fake invoices, phishing emails that mimic PayPal's branding, and fraudulent payment requests. These scams trick victims into sending money, sharing login credentials, or clicking malicious links that install malware. Understanding how these scams work is your best defense against losing money or having your account compromised.

How This Scam Works

Scammers send fake PayPal invoices for products or services you never purchased, hoping you will pay without checking.

Phishing emails that look identical to real PayPal notifications ask you to 'verify your account' or 'confirm a transaction' by clicking a link that leads to a fake login page.

Overpayment scams where a buyer 'accidentally' sends too much money and asks you to refund the difference before the original payment is reversed.

Fake shipping notifications claim a package is on its way, prompting you to click a tracking link that downloads malware.

Scammers posing as PayPal customer support call to report suspicious activity and ask for your login details to 'secure' your account.

Warning Signs

⚠Emails from addresses that do not end in @paypal.com

⚠Urgent messages threatening account suspension unless you act immediately

⚠Invoices for products or services you did not order

⚠Requests to send money via Friends & Family for purchases

⚠Messages with spelling errors, generic greetings like 'Dear User', or mismatched URLs

⚠Requests to call a phone number not listed on PayPal's official website

⚠Payment notifications for amounts you were not expecting

Real Scam Examples

These are examples of messages used in this type of scam. Recognizing the patterns helps you stay safe.

Phishing Email

"Subject: Your PayPal account has been limited. Dear Customer, We have noticed unusual activity on your account. Please verify your identity by clicking the link below within 24 hours or your account will be permanently suspended. [Verify Now]"

Fake Invoice

"You have received an invoice for $499.99 from Norton Security LLC for Annual Subscription Renewal. If you did not authorize this transaction, call 1-800-XXX-XXXX immediately to cancel."

Overpayment Scam

"Hi, I accidentally sent you $1,500 instead of $150 for the item. Can you please refund me the $1,350 difference via Zelle or wire transfer? I really need the money back quickly."

How to Protect Yourself

1Always log in directly

Never click links in emails claiming to be from PayPal. Instead, open your browser and type paypal.com directly to check your account.

2Check the sender's email address

Legitimate PayPal emails come from @paypal.com. Look carefully for misspellings like @paypa1.com or @paypal-security.com.

3Never send money outside PayPal for a PayPal transaction

If someone asks you to refund money through Zelle, Venmo, wire transfer, or gift cards, it is a scam.

4Enable two-factor authentication

Add an extra layer of security to your PayPal account so scammers cannot access it even if they steal your password.

5Report suspicious messages

Forward suspicious emails to phishing@paypal.com and delete them. Report fake invoices directly within PayPal.

6Use PayPal's Purchase Protection

When buying items, always use Goods & Services payment type to ensure you are covered by PayPal's buyer protection.

Frequently Asked Questions

Think you have received a scam like this?

Paste the suspicious message into our free AI-powered GCR Scam Guard for instant analysis.

Check a Suspicious Message I Have Been Scammed

Related Resources

Zelle Scams: How Instant Payments Enable Fraud

Zelle scams exploit the instant, irreversible nature of peer-to-peer payments to steal money from victims. Because Zelle...

Online Shopping Scams: Fake Stores and Purchase Fraud

Online shopping scams use fake websites, social media ads, and fraudulent listings to trick consumers into paying for pr...

Phishing Attacks: The Complete Protection Guide

Phishing is the most common type of cyberattack, responsible for over 90% of data breaches. These attacks use deceptive ...

Phishing Detection Tool

Related Phishing Attacks resource

Anti-Phishing Training