Security Tip of the Week

Security Tip of the Week - PayPal Invoice Scam

  • Comments: 0
  • Posted by: Michaela Kunkler

Cybercriminals can use legitimate websites like PayPal to pass through spam filters and take advantage of their next victim. Stay safe!

Keller Schroeder Security Solutions Group Logo

Email spam filters are useful tools that prevent many scam emails from arriving in your inbox. Many users rely on spam filters to block phishing emails and, as a result, trust that emails sent to their inbox are legitimate. Cybercriminals take advantage of this trust by using legitimate websites like PayPal to send phishing emails and avoid spam filter detection.

In a recent scam, cybercriminals send you a fake invoice through a real PayPal account. Because emails from PayPal are not seen as spam, the email will probably be sent to your inbox rather than your spam folder. The email will look legitimate since it’s from a real Paypal account, but don’t be fooled. If you pay this invoice, you won’t get a valuable service. Your money will go to cybercriminals so they can use it for their own purposes!

To protect yourself from this malicious scam, follow the tips below:

  • Don’t rely on email spam filters to block phishing emails sent to you. Check emails for red flags like urgent deadlines and scare tactics to identify potential phishing scams.
  • To verify the legitimacy of an invoice, contact the service provider directly by using a known phone number or email address. Do not use the phone number or link sent in the invoice to contact the service provider.
  • Don’t trust the legitimacy of an email just because it was sent through a trusted website. Cybercriminals can use trusted websites to make their scams more believable.

Stop, Look, and Think. Don’t be fooled.


KnowBe4 Logo - Keller Schroeder Vendor Partner

KnowBe4 is the world’s most popular integrated platform for awareness training combined with simulated phishing attacks. Let Keller Schroeder show you how KnowBe4 has helped thousands of organizations just like yours manage the continuing problem of social engineering. Contact us today to learn more.


DISCLAIMER : Any non-technical views expressed are not necessarily those of Keller Schroeder or its employee-owners.