Mastodon Feed: Post

Mastodon Feed

Boosted by jsonstein@masto.deoan.org ("Jeff Sonstein"):
killyourfm@layer8.space ("Seasons of Jason 🎒") wrote:

There's a really disturbing #Paypal #phishing scam happening right now. Obviously this reads like a typical phishing attempt (bad grammar, a malformed phone number to call, etc), but the official Paypal email wasn't spoofed. It came from PayPal's email infrastructure.

Examining the headers shows that SPF, DKIM, and DMARC all pass. If you have a Paypal account, please exercise caution. Don't click links in these emails. Forward them to phishing@paypal.com.

Please boost for visibility.

A phishing email impersonating PayPal, warning of a $599.99 BTC transaction and urging the recipient to call a phone number to stop the payment or log in to their account.