Scammers Are Sending Real Emails From PayPal's Servers #cybersecurity #paypal #scamalert

Scammers found a way to make PayPal's own servers send you a legitimate email claiming you owe nearly $1,000 for a Coinbase purchase. The email passes every spam filter and authentication check — because it is real. The charge is not. They send micro-payments as small as one Hungarian forint (about a third of a cent) to trigger a real payment notification, then stuff the message field with a fake charge and a phone number. When you call, you reach someone pretending to be PayPal support who asks to remotely connect to your computer. From there it is credential theft, fake antivirus sales, or both. Malwarebytes has been tracking this pattern as it evolves, documenting variants that abuse PayPal's "add address" feature, money request tool, and a subscription loophole PayPal closed in December 2025. Sources: Malwarebytes (https://www.malwarebytes.com/blog/news/2026/04/more-paypal-emails-hijacked-to-deliver-tech-support-scams), BleepingComputer reporting on the add-address exploit and subscription loophole. More on cybersecurity, privacy, scams, and homelab on Hake Hardware. New shorts every weekday.