Is SiftMail the same as sift.email?

No. SiftMail (siftmail.app) is an AI-powered email security and triage platform for end users that connects to Gmail or Outlook. sift.email is a separate, unrelated email-list verification API for marketers. The two products are different companies in different categories with no affiliation.

What does SiftMail do?

SiftMail connects to a user's Gmail or Outlook inbox, automatically categorizes every email, surfaces important messages, bundles promotions and newsletters into digests, and detects phishing, impersonation, and Business Email Compromise attempts. It also provides the Sift Inbox Index, a searchable index of inbox history.

Does SiftMail read my emails?

SiftMail reads email headers and metadata for triage and security analysis. Full message bodies are not stored. The classification models receive only the minimum data required to score and categorize each message.

Does SiftMail work with Outlook?

Yes. SiftMail supports both Gmail and Outlook (Microsoft 365) via OAuth.

Yes — Shield Lite is free forever and includes 1 mailbox, 100 daily scans, basic risk scoring, and a 7-day history scan. Shield Pro is $15 per month with a 3-day free trial. Domain Defense is $39 per user per month for teams.

Home > Threat Library > PayPal Phishing Emails

💳

PayPal Phishing Emails

High SeverityPayPal is the #1 most-impersonated financial brand in phishing

PayPal phishing emails impersonate PayPal to steal login credentials, financial information, or trick victims into sending money. They typically report fake transactions, account limitations, or security alerts.

How it works

Email mimics PayPal's branding, colors, and email template
Claims a payment was made, account limited, or suspicious activity detected
Link leads to a fake PayPal login page
Credentials are captured and used to drain the account

Red flags to watch for

Real PayPal emails come from @paypal.com — check the exact domain
PayPal addresses you by your full name, not "Dear Customer"
PayPal never asks for your password, SSN, or credit card via email
Hover over links — they should go to paypal.com, not paypa1.com

Real-world example

Subject: You sent $850.00 to Electronics Store
From: service@paypa1.com
“You authorized a payment of $850.00. If you didn't make this payment, click here immediately to dispute the transaction and secure your account.”

How to protect yourself

Log into PayPal directly at paypal.com to check your account
Never click "dispute" links in emails
Enable 2FA on your PayPal account
Use SiftMail to automatically catch PayPal impersonation emails

How SiftMail detects this

SiftMail catches PayPal phishing through domain analysis (paypa1.com vs paypal.com), phishing body patterns, and homoglyph detection on Business tier.

Stop paypal phishing emails before they reach your inbox

SiftMail scores every incoming email and automatically quarantines threats. Free plan available, setup takes 30 seconds.

Protect My Inbox Free Check a Suspicious Email