According to this email, which appears to be from PayPal, you have sent a payment of $299 (or $199) to Australian online department store Kogan. The email features the PayPal logo and emulates a genuine PayPal transaction notification email.
The email claims that you can click a ‘cancel transaction’ link to get a full refund if you did not authorise the payment to Kogan.
However, the email is not from PayPal and the claim that a payment has been sent to Kogan from your account is untrue. The email is a phishing scam designed to trick you into divulging your PayPal account details and other sensitive personal information to cybercriminals. The criminals hope that at least a few recipients will be panicked into clicking the ‘cancel transaction’ link in the mistaken belief that their PayPal account has been compromised and used for fraudulent transactions.
If you do click the link, you will be taken to a bogus website designed to look like the genuine PayPal page. The page will ask you to enter your PayPal account login credentials. After you login, you will be taken to a second fake page that asks you to confirm your account by supplying your credit card details, contact details and other personal information. A final page on the fake site may then claim that you have successfully cancelled the Kogan transaction.
But, meanwhile, the scammers can use the information you supplied to hijack your PayPal account, commit fraudulent transactions using your credit card, and possibly steal your identity.
This scammer ploy is quite common. Similar versions of the scam have claimed that you have sent a payment via PayPal to Apple, ASDA, and a host of other well-known companies.
If you receive one of these emails, do not click any links or open any attachments that it contains. It is always safest to login to your PayPal account by entering the account address into your browser’s address bar or via an official app.
Keep in mind that genuine PayPal emails will always greet you by name. They will never use generic greetings such as ‘Dear Customer’. Nor will they use your email address as a greeting.
You can report PayPal phishing attacks via the reporting details listed on the company’s website.
EXAMPLE:
Dear user ID – [Email address Removed] ,You sent a payment of $299.99 AUD to Kogan.com.au
It may take a few moments for this transaction to appear in your account.
Merchant
The Kogan Co.
Instructions to merchant
Online delivery to [removed]
Description Unit price Qty Amount
$199.99 AUD 1 $199.99 AUD
Subtotal $199.99 AUD
Total $199.99 AUD
Payment $199.99 AUD
Charge will appear on your credit card statement as “PAYPAL *Kogan”
Payment sent to
Amount $199.00 AUD
Exchange rate: 1 AUD = 0.0000 AUD
Invoice ID: 20948-1-630917 Kogan Company Ltd
Issues with this transaction?
* If you haven’t authorized this payment ,click the link below to get full refund
Cancel transaction at: [Link removed]
Last updated: December 1, 2015
First published: December 1, 2015
By Brett M. Christensen
About Hoax-Slayer
References
PHISHING SCAM – ‘Receipt For Payment to Apple Store’
PayPal ‘ASDA Order’ Phishing Scam
Phishing Scams – Anti-Phishing Information
Report PayPal Phishing
Original Source : https://www.hoax-slayer.net/paypal-you-sent-a-payment-to-kogan-phishing-scam-email/