EN
Many people assume that scam calls are easy to spot because they often come from suspicious numbers or contain obvious mistakes. However, a recent report shared on Reddit highlights how modern scammers are becoming much more convincing and dangerous.
In the reported incident, a woman in the UK received a phone call from a private number. The caller claimed to be from PayPal and warned about a supposedly suspicious Booking.com transaction. Although the story sounded believable, the victim and her husband quickly became suspicious because they did not use Booking.com.
The situation became even more concerning when the caller appeared to know the victim's full name and phone number. The scammer then triggered a PayPal two-factor authentication (2FA) code and asked the victim to read the code aloud. Fortunately, the call was ended immediately before any information was shared.
This scam is a classic example of a customer service impersonation scam. Instead of trying to hack an account directly, scammers trick victims into giving away the information needed to access the account themselves. In many cases, the fraudster already has basic details such as a name, phone number, or email address. These details may come from data breaches, public records, marketing databases, or information shared online.
Once they have enough information, they can initiate a password reset or login attempt, which causes a legitimate security code to be sent to the account owner. The scammer then calls and tries to convince the victim to reveal that code.
PayPal has specifically warned users about this type of fraud. According to PayPal, customer service representatives will never ask you to share your password, two-factor authentication code, send money as a test transaction, or download software.
If a message or caller claims to be from PayPal and requests any of these actions, it should be treated as a scam. Users should always contact PayPal Help Centre rather than using phone numbers provided in suspicious messages.
One important lesson from this case is that caller ID cannot be trusted. Even if a phone number appears legitimate, scammers can use caller ID spoofing technology to make calls appear as if they are coming from trusted organizations. Security experts and law enforcement agencies have repeatedly warned that official-looking phone numbers should never be considered proof that a caller is genuine.
This PayPal scam is not the only variation currently circulating. Similar schemes include fake PayPal invoices, fraudulent payment confirmation emails, fake account suspension alerts, and messages claiming that expensive purchases have been made using your account. The goal is usually the same: create panic and convince the victim to call a fake support number or reveal sensitive information.
The PayPal scam call reported on Reddit shows how scammers combine social engineering, stolen personal information, and legitimate security features to trick victims. While the caller sounded professional and appeared to have some personal information, the request for a two-factor authentication code revealed the true intention.
Legitimate PayPal representatives will never ask for your authentication code, password, or test payments. If you receive a similar call, treat it as a scam and report it immediately.
Image Source: Pixabay
Disclaimer: This article has been written by a Scam Fighter Contributor, De-Reviews.com Team. If you believe the article above contains inaccuracies or needs to include relevant information, please contact ScamAdviser.com using this form.
