Is that PayPal 'verify your account' email a scam?
PayPal's name is used in more phishing emails than almost any other brand. The typical scam arrives as an email warning that your account has been 'limited', 'flagged for unusual activity', or 'will be closed in 24 hours' unless you click a button to verify your identity. The urgency is deliberate — scammers want you to react before you stop to think.
These emails look increasingly convincing. They copy PayPal's exact logo, colour scheme, and footer text word-for-word. Some spoof the sender display name so it appears as 'PayPal' in your inbox. What they can't easily fake is the actual sending address and the destination URL your click resolves to.
If you log in via a fake PayPal page, the scammers capture your email, password, and often your two-factor authentication code in real time via a relay attack. Within minutes they can drain a linked bank account or run up charges on linked cards.
🚩 Red flags to watch for
- ▶The sender address is not @paypal.com. Common fakes include service@paypal-accounts.com, noreply@paypa1.com, or security@paypal-support.net.
- ▶Hovering over the 'Log In to PayPal' button shows a URL that does not start with https://www.paypal.com.
- ▶The email addresses you as 'Dear Customer' or by your email address rather than your full registered name.
- ▶Threat of account closure within a very tight window — 24 to 48 hours — to manufacture panic.
- ▶The email is unexpected: you didn't just log in, make a transaction, or request a change.
- ▶Typos, odd spacing, or slightly mismatched fonts — PayPal's real emails are carefully polished.
- ▶The footer links or 'unsubscribe' link also point to non-PayPal domains.
✅ What to do
- 1Do not click any link in the email. Open a new browser tab and go to paypal.com by typing it yourself.
- 2Log in normally. If there is a real account issue, PayPal's notification center will show it — you don't need the email link.
- 3If in doubt, call PayPal directly using the number listed on their official website, not any number in the email.
- 4Report the phishing email: forward it to phishing@paypal.com. PayPal investigates every report.
- 5If you already entered your credentials: change your PayPal password immediately on the real site, enable two-factor authentication, and contact PayPal support to review recent account activity.
📣 Where to report (by country)
🇺🇸 United States
🇬🇧 United Kingdom
- Action Fraud
- Police Scotland — call 101
🇦🇺 Australia
🇨🇦 Canada
🌍 Everywhere else
- Contact your local police and your bank immediately
- If money was sent, ask your bank about a recall request — act within hours
Got a suspicious message right now?
Paste it into our free AI checker for an instant pattern analysis
No account needed · Free to try · Privacy-first
Check your message free →No tool is a guarantee. AI pattern detection is a guide, not a verdict — always use your own judgment.
Common questions
Does PayPal ever send emails asking you to verify your account?
Yes — but real PayPal security emails don't threaten account closure within hours to pressure you, and all genuine links resolve to paypal.com. Treat any unexpected urgent email as suspicious, and verify by going to the site directly.
I entered my password on what I think was a fake PayPal page. What should I do right now?
Change your PayPal password immediately from the real paypal.com. Then check your linked bank accounts and cards for unauthorized transactions. Enable two-factor authentication if it isn't already on, and call PayPal's fraud line.
The email has PayPal's exact logo and colours. How is it fake?
Copying logos and CSS is trivial — scammers do it in minutes. The two things they can't convincingly fake are the actual sending email address and the real destination URL. Always check both before clicking anything.