I'm fairly vigilant and can spot obvious PayPal spoofs and phishing. I always forward these emails to spoof@paypal.com. Of course I get an automatic reply (I wouldn't expect anything else) thanking me for my diligence. This weeks "spoof" however, was on a different level. The email invited me to "Check your PayPal activity for this month, something PayPal has never done before. The email addressed me directly by my proper account name. On the email was an announcement that I hadn't added my bank details to my account. What? how can PayPal manage my payments if they don't have details of my bank credit card account? On forwarding this suspicious email to PayPal I got the usual auto reply but this time it said "Unfortunately, we're unable to determine if this email is considered phishing because the email did not claim to come from PayPal. Nonetheless, we are grateful for your concern." What? In the "From field" it said ......... This vital piece of information doesn't seem to be allowed here but suffice to say there is an exrta "e." just before the proper PayPal address after the @ sign. I re-sent the supposedly spoof email and I extracted the header to include in the main body of text, particularly the line reading...... "Received: from outbound.emea.e.paypal.com (unknown [xx.xx.xx.xxx])" (ISP address can be supplied) I even included a screen grab of the email which is beautifully fashioned to look like a genuine PayPal email. Result? an identical auto responder as above. On both occasions I asked the question, "is this a genuine PalPay email" and I still haven't had a suitable answer. The reference from PayPal to my enquiry is (KMM12502778V43170L0KM). Is there a vague possibility that one of you clever moderators can shed some light on this? We do our best but at times we need your help. I can PM all the details if you think it would help. Regards.
... View more