Skip to main content
Cloudy icon
77º
Join Insider
Trending
Check your address: Houston Public Works admits meter mix-up led to years of inaccurate water bills
Houston, Texas Weather Radar | Click2Houston | KPRC
2 Texas residents linked to Atlantic cruise ship exposed to Hantavirus outbreak
Stolen checks, mail and counterfeit postal keys found during Houston game room bust
Houston drivers paid nearly $1 billion in tolls — so why are they still stuck in traffic?
Has Texas seen any Hantavirus cases over the years? Here’s what state records show
Former Sweeny fire chief’s daughter breaks silence about alleged child sex crimes
‘She loved Italy’: Houston murder victim’s friends frustrated over husband Lee Gilley fleeing U.S. ahead of trial
Is hantavirus a pandemic threat? Houston infectious disease expert says risk to U.S. remains low
Suspect arrested after man shot multiple times during aggravated robbery on Kuykendahl Road

Local News

Criminals are using real PayPal emails to trick victims into calling fake support numbers

Andy Cerota, Anchor / Reporter

FILE - The PayPal logo hangs displayed outside their company headquarters on March 10, 2015, in San Jose, Calif. (AP Photo/Jeff Chiu, File) (Jeff Chiu, Copyright 2016 The Associated Press. All rights reserved. This material may not be published, broadcast, rewritten or redistribu)

At first glance, the email looks legitimate — and that’s exactly why cybersecurity experts say this scheme is so dangerous.

Criminals are now exploiting PayPal’s real email system to target unsuspecting users. The scheme works by sending tiny payments — sometimes as little as one cent — to random PayPal accounts. That action automatically triggers an official email from PayPal, making the message appear authentic.

Recommended Videos

But inside the payment note, fraudsters often include alarming claims, such as a large unauthorized purchase or a warning that the account has been compromised. The message then urges recipients to call a customer service number for help.

The catch: the phone number does not belong to PayPal.

Instead, victims are connected directly to criminals who attempt to steal passwords, banking information, or even gain remote access to computers.

Experts say the scheme is effective because it creates panic and pressures people to act quickly before verifying the information.

“If you receive something unexpected, never respond directly to the incoming message,” said Professor Ryan Marquez with the University of Houston Law Center. “Always initiate contact yourself by going directly to the company’s website or using the number on the back of your card. And never allow someone on the phone to guide you through logins or take remote control of your computer.”

Security experts recommend taking several steps to protect yourself:

  • Never click links or call phone numbers included in suspicious emails
  • Open your browser and log in to PayPal directly to verify account activity
  • Enable two-factor authentication
  • Use strong, unique passwords
  • Regularly monitor financial accounts for unusual activity

If you believe you may have interacted with criminals, experts advise immediately changing your passwords, contacting PayPal and your bank directly, and monitoring for signs of identity theft.

They also recommend considering a credit freeze if sensitive personal information may have been exposed.

Experts say the best defense is simple: don’t click, don’t call, and always verify first.

Copyright 2026 by KPRC Click2Houston - All rights reserved.