Fake PayPal Product Recall Refund Scam
Criminals send fake product-recall notices claiming a PayPal refund is waiting, then harvest account credentials or card details through a spoofed PayPal portal.
Part of: Fake Product Recall Refund Scams
Last reviewed: 8 June 2026
Genuine product recalls occasionally result in refunds processed through payment platforms including PayPal. Scammers monitor public recall announcements and immediately send mass phishing campaigns mimicking the affected brand plus PayPal, telling recipients they are owed a refund for a recalled item and need to log in to collect it.
Because real recall refunds do sometimes arrive via PayPal, victims are more likely to click through without questioning the email. The linked portal is a pixel-perfect clone of a PayPal login page, and any credentials entered are captured instantly. Scammers then use those credentials to drain the real account or change the registered email to lock the owner out.
The timing is deliberate: recall scams tend to peak in the days immediately after a widely reported recall, when consumer anxiety is high and the email feels timely and plausible.
How this scam works on the PayPal brand
The email arrives from a domain like refund-notice-paypal.com or paypalclaims.net and carries a convincing PayPal header. It names a specific recalled product (gleaned from recent news), states a refund amount, and provides a green 'Collect Refund' button. Clicking it loads a fake PayPal sign-in page where email and password are harvested.
After entering credentials, victims are shown a 'verification' page asking for their card number and CVV 'to confirm the refund destination.' This second step harvests payment card data independently of the PayPal login, ensuring the scammer profits even if the PayPal account has a low balance.
Some variants use automated call centres. A robocall advises the recipient they have a PayPal refund pending for a recalled item and asks them to press 1 to speak with a PayPal representative who then requests login information verbally.
Common red flags
- You receive a recall-refund notice for a product you never purchased.
- The email domain is not @paypal.com — inspect the full from-address carefully.
- The refund link goes to a site other than paypal.com.
- You are asked to enter your PayPal password and then immediately your card number on the same site.
- The email arrived suspiciously quickly after a public recall announcement.
- There is no corresponding message or credit inside your actual PayPal account.
- The email claims urgent action is required — 'refund expires in 48 hours.'
How to protect yourself
- Do not click refund links in emails — go directly to paypal.com to check for any pending credits.
- Check for recall refunds only through the original retailer or the government's recall database (recalls.gov in the US).
- Enable two-step verification on your PayPal account so stolen passwords alone are not enough to log in.
- Use a password manager — if the URL is not paypal.com, your manager will not autofill, alerting you to the fake site.
- Check your PayPal account regularly so you notice if your email or security settings are changed.
- Never enter card details on a page accessed through an unsolicited email link.
How to report it
- Forward the phishing email to [email protected].
- Report to the FTC at reportfraud.ftc.gov.
- Report to the CPSC (Consumer Product Safety Commission) at cpsc.gov if the recall is being impersonated.
- File with ic3.gov if you lost money or account access.
- Contact PayPal's customer support at paypal.com/help to secure your account if your credentials were entered.
Frequently asked questions
Does PayPal ever send product recall refunds unprompted?
Retailers sometimes use PayPal as a refund method, but you would first receive communication directly from the retailer or manufacturer through the channel you used to buy. An unsolicited PayPal email about a recall you have no record of is almost certainly fraudulent.
How do I find out if a product recall refund is genuine?
Go to recalls.gov (US) or the manufacturer's official website. Contact the retailer using a number from your original receipt, not from the email.
I entered my password on a fake site. What should I do now?
Change your PayPal password immediately at paypal.com, then change the same password anywhere else you used it. Contact PayPal support to review recent account activity and enable two-step verification.