There's a really disturbing #Paypal #phishing scam happening right now. Obviously this reads like a typical phishing attempt (bad grammar, a malformed phone number to call, etc), but the official Paypal email wasn't spoofed. It came from PayPal's email infrastructure.
Examining the headers shows that SPF, DKIM, and DMARC all pass. If you have a Paypal account, please exercise caution. Don't click links in these emails. Forward them to [email protected].
Please boost for visibility.
And that's all they need. According to statistics, spam accounts for 45~73% of all email traffic as of 2025, with about ~14.5+ billion spam mail sent a day.
If we assume that only 1% are actually opened, and that of those opened, only 1% of those 1% are fallen for, that's still 1.45 million spam emails being fallen for a day. Thats 10.15 million a week, 43.5 million a month, or ~530 million a year. And the number is likely higher and will only continue to grow as technology advances, especially as technological literacy seems to be in decline.
These emails aren't made to target everyone, they're designed to be mass mailed in the hope that someone, even one person, clicks on them. Especially as now, spam and phishing is less about immediate theft of money and the more permanent theft of PII, Personally-Identifiable Information, that is to be sold on the Black Market for who knows how much.
And once you fall for even one, you're more likely to be targeted as they know you previously fell for one. And this doesn't even take into account Spear Phishing, which is more a social engineering attack, to craft an email designed to specifically target an individual or entity (such as a corporation or institution)
Data Source: https://againstdata.com/blog/email-spam-statistics
Jason Evangelho 🐧🎒
Ferrus 
Athena L.M.
Efi (nap pet) 🦊💤