Cybercriminals are sending out fake PayPal delivery or shipping address change email requests like the one below, which claim that a request for changing the recipients' shipping address has been successful. The fake email provides a link or button to cancel the so-called request. But, the link or button in the fake email goes to a phishing website looking similar to PayPal's website where visitors will be asked to sign into with their PayPal account. But, any attempts to sign into the fake PayPal website will send the visitors' PayPal credentials to the cybercriminals behind the phishing scam.
Please continue below.
The "PayPal eBay Request for Changing Shipping Address" Phishing Scam
Subject: The request for changing the shipping address has been successful, detail new address 9176 heather st, Alta loma, CALIFORNIA, 91701
From: [email protected] <[email protected]>
eBay
We want to help you to change your shipping address
Hi,
The request for changing the shipping address has been successful. this detail new address:
Delivery Name: Nieves Romero
Delivery Address: 9171 heather st, Alta loma, CALIFORNIA, 91701
Phone Number: 9569494850
Item: Nikon D500 body only, 2438 actuations, boxed MINT 12 MONTH WARRANTY
If you don't request change shipping address or this not you? go to this link for resolve.
go to resolution center
eBay is committed to your privacy. Read our user agreement and privacy notice. Learn how to recognize fake (spoof) emails.
We don't check replies sent to this email. If you have questions, we want to help you find an answer.
Copyright ©2017 eBay Inc. All Rights Reserved. Designated trademarks and brands are the property of their respective owners. eBay and the eBay logo are trademarks of eBay Inc., 2145 Hamilton Avenue, San Jose, CA 95125.
The link in the fake PayPal email goes to the following phishing website created by cyber criminals:
-
hxxp://management-changeshippingaddress-ebaycommunication.com
Online users are advised not to visit and attempt to sign into phishing PayPal website with their PayPal credentials.
The cybercriminals behind the scam will use another website as soon as the current one has been discovered and taken down.
This is why it is important that PayPal users remember never to click on a link to sign into their accounts. They should always go directly to www.paypal.com and sign-in from there instead. This will prevent them from becoming victims of phishing scams, where cyber criminals steal their credentials, hijack their accounts, steal their money, and use their accounts fraudulently.
PayPal users who have already been tricked by a phishing scam, are asked to change their passwords and contact PayPal immediately for help.
Please share with us what you know or ask a question about this article by leaving a comment below. Also, check the comment section below for additional information, if there is any.
Remember to forward suspicious, malicious, or phishing email messages to us at the following email address: [email protected]
Also, report scams, untrustworthy, or fraudulent websites to us. Tell us why you consider the websites untrustworthy or fraudulent.
If you want to quickly find answers to your questions, use our search ![]()
engine.