PayPal Community

That doesn't make sense. They want you to send them phishing emails so they can analyze them to stop further phishing. Why would they have software to filter out the content? Wouldn't that mean there is no need to forward phishing emails because thay won't or can't do anything with them?

They have very good reason to remove malicious attachments from incoming mail as they need to keep their internal systems secure.

Make sure any messages forwarded do no contain malicious attachments.  You can use your own anti-virus programs to scan attachments.

Don't buy that. There is no attachment only links, to God only knows, similar to all other phishing emails I have forwarded before and that have been confirmed as phishing. If your assertion were accurate, why wouldn't they say so, "we can't analyze your email because of X, Y, or Z" instead of letting someone else's Hypotheses be their excuse for not doing their job of protecting us, their clients. I forwarded the email to myself to see if it deleted it's content if forwarded and I got the complete email. They need to accept their responsibility to protect their client. It could contain contain a key that would delete it's content if forwarded to Spoof@paypal.com. I would be very concerned about that. If all this is filtered by software it should have an alert for a person to examine what is received and call or provide another email address to forward it to that would not trigger the deletion. Which is possible because I did forward it to myself and received the entire body of the email.

I thought that was the reason they wanted us to forward supiscious emails. So they could analyze the codings and links and shut them down before we, their client, were harmed.

Looking at the first message my guess would be that the content of the email was removed BEFORE it got to PayPal.

The header information from your sent email would give a little information about the sent email such as being sent as text format, but it won't show the route to the recipient.

You could try another test and send the email to yourself making sure you use the email service on one device and then receive with a different service on a different device.  The idea would be to make it leave your email world, travel to the external email world and then back to yours.  Then check the email header for more infomation.

You could also phone PayPal support for help, but will take a lot of patience and persistence.

I tried to do this and also BCC my Evernote address so I'd have a copy to refer to if I needed it. It absolutely did NOT go to my Evernote account at all, despite three or four attempts. So now I'm not sure if it ever went to the spoof address either.

 

hi!, today i recieved a paypal mail about statement of unexpected sign in activity (the sender is not paypal domain) but when i login directly in the website i dont have any alert about this so i suppose that mail is phising, can you verify please?, than you.

@noerosvang

 

 

I can tell its a spoof from the first 2 words.

 

Paypal would never address you as Dear Member, they would use your full name eg Dear John Smith.

 

They would also not ask you to click on an unsafe link in an email, they would tell you to log on normally and go to the resolution centre or message centre.

 

NEVER CLICK ON ANY LINKS IN EMAILS...VERY UNSAFE.

 

I get emails like that every few weeks, just ignore and delete.

all Paypal emails ends with

@ paypal.com

when in doubt,forward to spoof@paypal.com,it will tell y ou