PayPal Amazon Phishing Scam Uses Fake Customer Support

SEVERITYMedium

EXPLOITActive Exploit

PATCH STATUSUnavailable

VENDORPayPal and Amazon

AFFECTEDPayPal customer accounts and A...

CATEGORYCyber Attacks

Key Takeaways

Threat: Social engineering campaign targeting PayPal and Amazon customers
Method: Fake customer support interactions to harvest credentials
Impact: Sensitive information theft through impersonation tactics
Status: Active campaign identified by security researchers

PayPal Amazon Impersonation Campaign Targets Users

Security researchers identified an active social engineering campaign on March 16, 2026, where attackers impersonate PayPal and Amazon customer support representatives. The threat actors contact victims through phone calls and emails, claiming to assist with account issues or suspicious transactions.

The attackers use convincing scripts and spoofed caller IDs to appear legitimate. They request account credentials, payment card details, and personal information under the guise of verifying identity or resolving fabricated security concerns.

PayPal and Amazon Customers Under Attack

The campaign primarily targets PayPal and Amazon account holders across multiple regions. Attackers focus on customers who recently made purchases or have active payment disputes, using publicly available transaction data to enhance credibility.

Small business owners using PayPal for commerce and frequent Amazon shoppers face elevated risk. The CISA advisory system tracks similar social engineering threats affecting financial service users.

How the PayPal Amazon Scam Works

Attackers initiate contact claiming urgent account security issues require immediate verification. They guide victims through fake authentication processes, capturing login credentials and two-factor authentication codes in real-time.

The criminals use sophisticated voice spoofing technology and reference legitimate transaction details to build trust. Users should verify any unsolicited support contact by independently calling official customer service numbers. The Microsoft Security Response Center recommends never providing credentials through unsolicited communications.

Frequently Asked Questions

How can I verify legitimate PayPal or Amazon customer support?+

Always hang up and call the official customer service number listed on the company's website. Legitimate support will never ask for passwords or full credit card numbers over unsolicited calls.

What information do PayPal Amazon scammers typically request?+

Attackers request login credentials, full credit card numbers, Social Security numbers, and two-factor authentication codes. They claim this information is needed to verify your identity or resolve security issues.

What should I do if I received a suspicious PayPal or Amazon support call?+

Hang up immediately and report the incident to the official company fraud departments. Change your account passwords and monitor your financial statements for unauthorized transactions.

About the Author

Emanuel DE ALMEIDA

Senior IT Journalist & Cloud Architect

Microsoft MCSA-certified Cloud Architect | Fortinet-focused. I modernize cloud, hybrid & on-prem infrastructure for reliability, security, performance and cost control - sharing field-tested ops & troubleshooting.