Chapter in this post:
Perhaps you also received an email from PayPal Customer Service at the beginning of 2020 with the subject “Your action is required” on the subject of “Directive 2015/2366 (PSD2)” that struck you as a little weird. No wonder, because there is another phishing email that you should definitely not click on the link. Here I will show you how to recognize the fake PayPal mail. Do you have any further information or if you get other messages that look like fraud and data theft, please leave a comment.
You can quickly see that the current notification on EU Directive 2015/2366 (PSD2) is fraud if you know what you're doing. I will explain to you below what the directive is all about. Here I would like to first go into the form points of the apparent customer service e-mail that expose it as spam and phishing attempt:
Since not everyone checks the sender address (which you should ALWAYS do) and "Customer Service" is not a conspicuous sender name for many, some recipients are sure to fall for this email. Also, not everyone will immediately notice that the PayPal logo is compressed in width - as an online nerd, this fraudulent mistake was the first to catch my eye.
Finally, you should always, always, ALWAYS check the link in the body of an email. For example right click -> copy link -> link in one Pages, TextEdit or Word file. This way you know the link without having to click on it. If you accidentally click on it, don't panic. It is important that you do not disclose any data on the target page. And: If the e-mail does not arrive at the e-mail address you intended for PayPal uses, but with another (maybe even another provider) then you can ignore and delete them anyway.
To enter the user data on the website linked in the mail it says drastically: "Please make sure that the spelling is correct so that the confirmation is automatically recognized by our system. If there are deviations from the data already stored with us, we are obliged by PSD2 to finally close your customer account [sic] "
The whole thing should build up pressure, as many users use their PayPal account for various payments. With the account, a convenient payment function for online shopping, gaming services, ordering services for pizza and the like and much more would be omitted. That is why those people who fall for the mail are doubly sure that they are making their data available to the fraudsters as flawlessly as possible. And they then benefit from it.
"In every lie there is a bit of truth", as the saying goes. This is also the case here, because the EU Directive 2015/2366 (PSD2) is not an invention of the fraudsters who sent you the mail. Among other things, at Wikipedia you get on the page for the term Payment Services Directive an explanation of this. A much better source of information than the mail described above;)
In short: the Payment Services Directive (PSD) regulates payment services and protects users. In addition to consumer protection, the competitiveness of non-banks in the industry is also a goal. You can get an overview of the contents of the paper, the technical aspect and the current version as PSD2 on the linked page.
Jens has been running the blog since 2012. He appears as Sir Apfelot for his readers and helps them with problems of a technical nature. In his free time he drives electric unicycles, takes photos (preferably with his iPhone, of course), climbs around in the Hessian mountains or hikes with the family. His articles deal with Apple products, news from the world of drones or solutions for current bugs.