Beware: PayPal "New Address" Feature Exploited for Phishing Scams

Cybercriminals are abusing PayPal’s address settings to send scam emails that look like official notifications. These emails claim a new shipping address has been added to your PayPal account and include a fake purchase confirmation for a MacBook M4. The goal is to trick users into calling a fake PayPal support number, where scammers try to gain remote access to their devices.

  • Legitimate-Looking Emails – Scammers exploit PayPal’s system to send emails directly from "service@paypal.com," making them appear genuine.

  • Fake Purchase Notification – Victims receive emails stating that their address has been changed and a MacBook M4 has been purchased using their account.
  • Scammer’s Fake Support Number – The email urges recipients to call a given number if they did not authorize the purchase.
  • Remote Access Trick – Calling the number leads to scammers who try to convince users to install remote access software, allowing them to steal data and money.

  • Exploiting PayPal's Address System – Scammers insert fake messages into the "Address 2" field, which gets included in PayPal’s confirmation email.
  • Forwarding Scam Emails – The scam emails are sent to a mailing list, allowing cybercriminals to target multiple victims at once.

This scam is highly deceptive as the emails come directly from PayPal’s official address, bypassing spam filters. If you receive such an email, do not call the number or install any software. Instead, log in to your PayPal account directly and verify if any changes were made. Stay cautious, and never share sensitive information over the phone.