PayPal e-mail on "Directive 2015/2366 (PSD2)" is phishing!

Perhaps you also received an email from PayPal Customer Service at the beginning of 2020 with the subject “Your action is required” on the subject of “Directive 2015/2366 (PSD2)” that struck you as a little weird. No wonder, because there is another phishing email that you should definitely not click on the link. Here I will show you how to recognize the fake PayPal mail. Do you have any further information or if you get other messages that look like fraud and data theft, please leave a comment.

Did you receive an email from PayPal Customer Service at the beginning of 2020 with the subject "Your action is required" on the subject of "Directive 2015/2366 (PSD2)"? Then DO NOT click on the link in it!

Did you receive an email from PayPal Customer Service at the beginning of 2020 with the subject "Your action is required" on the subject of "Directive 2015/2366 (PSD2)"? Then DO NOT click on the link in it!

This is how you recognize the PayPal phishing mail

You can quickly see that the current notification on EU Directive 2015/2366 (PSD2) is fraud if you know what you're doing. I will explain to you below what the directive is all about. Here I would like to first go into the form points of the apparent customer service e-mail that expose it as spam and phishing attempt:

  1. Sender name is just generic "Customer Service" (at least for me)
  2. The sender address is not from PayPal (for me: ilbeuner56 [at] gmx.de)
  3. The mail was not sent to my PayPal e-mail address, it was sent to a different one
  4. The PayPal logo in the mail is compressed, it is the wrong width
  5. The link for the "confirm now" button is a bitly.com link 

Always checks the sender address, links and individual mail elements!

Since not everyone checks the sender address (which you should ALWAYS do) and "Customer Service" is not a conspicuous sender name for many, some recipients are sure to fall for this email. Also, not everyone will immediately notice that the PayPal logo is compressed in width - as an online nerd, this fraudulent mistake was the first to catch my eye. 

Finally, you should always, always, ALWAYS check the link in the body of an email. For example, right-click -> copy link -> insert link in a Pages, TextEdit or Word file. So you know the link without having to click on it. If you click it by mistake, don't panic. It is important that you do not disclose any data on the target page. And: If the mail does not arrive at the mail address that you are for PayPal uses, but with another (maybe even another provider) then you can ignore and delete them anyway.

Phishing scammers always work with pressure

To enter the user data on the website linked in the mail it says drastically: "Please make sure that the spelling is correct so that the confirmation is automatically recognized by our system. If there are deviations from the data already stored with us, we are obliged by PSD2 to finally close your customer account [sic] "

The whole thing should build up pressure, as many users use their PayPal account for various payments. With the account, a convenient payment function for online shopping, gaming services, ordering services for pizza and the like and much more would be omitted. That is why those people who fall for the mail are doubly sure that they are making their data available to the fraudsters as flawlessly as possible. And they then benefit from it.

This is behind the EU Directive 2015/2366 (PSD2)

"In every lie there is a bit of truth", as the saying goes. This is also the case here, because the EU Directive 2015/2366 (PSD2) is not an invention of the fraudsters who sent you the mail. Among other things, at Wikipedia you get on the page for the term Payment Services Directive an explanation of this. A much better source of information than the mail described above;)

In short: the Payment Services Directive (PSD) regulates payment services and protects users. In addition to consumer protection, the competitiveness of non-banks in the industry is also a goal. You can get an overview of the contents of the paper, the technical aspect and the current version as PSD2 on the linked page.

-
Do you like my blog? Then I would be happy to receive a short review on Google. Easy leave something here for a moment - that would be great, thank you!

Leave a Comment

Your e-mail address will not be published. Required fields are marked with * .