A recent discovery by security researchers from Japanese cybersecurity vendor Trend Micro has unveiled a new wave of PayPal invoice scams targeting blockchain and cryptocurrency-related businesses. These scams involve scammers posing as PayPal sellers and sending fraudulent invoices to unsuspecting individuals, claiming that they have been charged a certain amount of money. The ultimate goal is to lure recipients into clicking on malicious links embedded within the invoices.
What sets these scams apart is the use of well-known company names and tokens from various blockchains to add a sense of legitimacy to the fraudulent invoices. Some of the examples highlighted by Trend Micro include Stellar XLM, Bitcoin Exchange, Terra Luna Classic, Oasis Network, and TrueUSD.
To protect oneself from falling victim to these scams, Trend Micro offers some valuable tips:
1. Double-check contact details and URLs: It is essential to scrutinize any unexpected or unauthorized charges received via email, even if the email appears to be from a legitimate company like PayPal. In some cases, the email may originate from PayPal’s service itself, adding to the deception.
2. Reach out to official websites and support pages directly: When in doubt about the authenticity of an email or invoice, it is advisable to contact the company’s official website or support page for assistance. Suspicious emails can also be forwarded to spoof@paypal.com for further investigation.
3. Avoid clicking on links or calling numbers: As a general rule of thumb, refrain from clicking on any links or dialing phone numbers provided in suspicious emails or invoices. These links could lead to malicious websites or prompt the installation of malware on your device.
By staying vigilant and following these precautionary measures, individuals can reduce the risk of falling prey to PayPal invoice scams targeting blockchain and cryptocurrency enthusiasts. It is crucial to remain cautious and verify the legitimacy of any financial transactions or requests received via email to safeguard personal and financial information from potential cyber threats.