PayPal’s “No Phish Phishing” Scandal: When $2,000 Emails Make People Easy Prey

PayPal is in hot water over a “No Phish Phishing” scam exploiting its system, tricking users with fake payment emails. With 70% of users fooled, PayPal urges password resets and 2FA. They’re also boosting security with AI to block phishing. Stay vigilant and monitor your accounts, because even $2,000 can be fishy!

3P
Published: January 13, 2025 6:10 amAdded: January 12, 2025 at 10:42 pmAssembled by: The Editor
Pro Dashboard

Hot Take:

PayPal users may need to rethink that “No Phish” sign on their virtual door as the platform currently finds itself entangled in a “No Phish Phishing” scam. It’s like putting up a ‘Beware of Dog’ sign when your fiercest pet is a goldfish. Lesson learned: when you receive an email about an unexpected $2,000 payment, it’s probably not your lucky day—just a scammer’s!

Key Points:

  • PayPal has been linked to a sophisticated phishing scam exploiting a system weakness.
  • Scammers trick users with emails appearing as legitimate payment notifications.
  • The scam is associated with the notorious MS Office 365 test domain.
  • Success rate of the scam is about 70%, due to the convincing nature of the emails.
  • PayPal is enhancing security measures, including AI technology, to combat this threat.

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?