I get a LOT of spam emails - phishing trips by people looking to steal my identity - asking me to confirm my details with the likes of E-bay, Paypal and half the banks in the world. The idea of the spammers is that you go on to what looks like the company's site to confirm you details but really you're on their site - with the same buttons, look and feel that you may be used to - and by submitting your login information you're giving them access.
There's a similar scam - I've seen before but suddenly had a batch in the last 24 hours - which tells me about a Paypal transaction I'm said to have made, and asks me to dispute the transaction if I don't agree it. This is likely to be an attempt at identity theft - a phishing trip - too
and you should NOT follow any of the links offered.
Here is what my sample looked like.
My advise is to ignore these emails, but I'm slightly concerned in offering that advise as it's highly unlikrly, but possible, that such an email could be providing you with a warning that someone has already got into your account. You must make your own decision what to do (this is my "limitation of liablilty" statement!!).
Personally, if in doubt I "view raw source" and / or "complete headers" of the email and look for clues such as
Received: from apache by sv1.pacificasia.com.sg with local (Exim 4.60) (envelope-from ) id 1GM78A-0003LT-FD for email@example.com; Sun, 10 Sep 2006 02:00:38 +0800
as the last "received" header which tell me that the message cam from Singapore and
<a href="http://184.108.40.206/Sea%20Level/.www.paypal.com/us/login_secure/"><span class="ppem106">Dispute Transaction</span></a>
as the HTML that created the "Dispute Transaction" button ... the numbered IP address is clearly wrong (but beware - this button could have a rogue named server similar to Paypal's).
If still in doubt and you really feel you need to contact Paypal, do so by connecting to their system via your normal link or another route and absolutely NOT through any link in the email you've just received. Chances are, though, you are needlessly worrying - millions of false emails go out every day. (written 2006-09-09, updated 2006-09-10)
|Bruce James:||The clues in the 'Dear Paypal Member' bit.. Real paypal would know your name, surely?|
(comment added 2006-09-11 14:47:51)
Associated topics are indexed as below, or enter http://melksh.am/nnnn for individual articlesG910 - Well House Consultants - Scams 
Youve Been Selected for the 2012 Edition of the Global Registry - (2012-09-16) 
Direct Message: Really horrible blog about you ... a clever phishing trip, said to be from an MP - (2011-10-14) 
Pay and refund scam - alive and kicking against Melksham businesses - (2011-05-16) 
Clickjacking - another way to get you to follow a malicious link - Facebook issue - (2011-03-29) 
Not mugged in London! - (2010-10-08) 
Global Computer Maintenance Department - (2010-07-29) 
The World Company Register - is it another scam? - (2010-03-23) 
An update on legal changes from the FSB? - (2009-12-03) 
Hotel Booking Scam / Cost of calls to 070 numbers - (2009-09-12) 
Translation from Ghanaian to English - (2009-08-23) 
What have iTime, honeytrapagency and domain listing center got in common? - (2008-09-12) 
Ken Palm, iTime, and Domain Name Tasting - (2008-08-25) 
Astroturfing - the online definition - (2008-06-17) 
Google, wwmdirectory, Freshwater, ATP - new scam? - (2007-09-09) 
Tratum Technologies - (2007-08-21) 
Frightening and from-friend viruses and spams - (2005-06-14) 
Calling a spade a spade - (2005-01-15) 
Domain Registry of America - (2004-10-07)
Some other Articles
Add to shopping cart - NO VACANCIES signDouble and Triple equals operator in PHP4 weeks to goBallooning from DevizesWarning - false emails, said to be from PaypalPut the answer in context - it may be printedFrom the Manor writtenStrikingly busyThe train returns for a few weeksFitting our bathrooms