There is an old saying that goes, “Don’t believe anything you hear and only half of what you see”. That saying could not apply more to social media. In a landscape filled with bots, con artists, and shady advertisements, it’s no wonder scammers have taken to the hottest social media platform to spread their newest scam.
The Better Business Bureau has issued a warning about an online shopping scam taking place on TikTok. According to the BBB, scammers are posting videos to TikTok claiming they’re disgruntled employees of a high-end jewelry store. The scammers say they’re quitting from the store and to get back at their employers, they’re going to give viewers a secret code to get free merchandise.
The trick here is that viewers are directed to a fake website that looks like a retailer’s website. While the ‘secret code’ gives the viewer 100% discounts for the merchandise, shipping fees will rack up. If someone were to complete their order, the scammers would have the victim’s financial information. If the victim receives any product at all, it’s usually a cheap knock-off. The BBB is also warning this scam could be duplicated using any kind of retailer.
We say this a lot, but it really tends to be true. If an offer sounds too good to be true, it probably is. Any outrageous offers like this should be thoroughly researched before committing to making a payment. IN actuality, you should really only shop with retailers who have already gained your trust. Lastly, if at all possible, always shop online with a credit card. If you get ripped off while using a credit card, you’re more than likely to get your money back than you would with a debit card, as credit cards provide more protection to consumers.
Whenever someone develops a new and useful tool, it’s only a matter of time before someone uses it for criminal purposes. The large language model ChatGPT was released to the public last year. Essentially, you can give ChatGPT any kind of prompt, and it will write it out for you. Want to write a professional sounding email to a prospective employer, it can do that for you. Want to have it write a script about Batman meeting Abraham Lincoln? It can do that too. Do you want to have ChatGPT craft the best romantic responses to keep a lonely victim believing they’re in a committed online relationship? Unfortunately, it can do that too.
According to cybersecurity experts, scammers have developed their own chat AI that will produce authentic looking messages to romance scam victims. For the initiated, romance scammers typically prey on the single and widowed by pretending to be an online romantic interest. These scammers will cultivate a phony online relationship using fake names and pictures, along with a story about how they can’t meet in public. The scammers will cultivate these relationships for months before asking the victim for money. Victims have lost thousands of dollars and even up to millions of dollars each to these scammers.
Now, armed with an AI chatbot of their own, romance scammers almost have a ‘set it and forget it’ setting for running their scams.
However, while this may make the romance scam appear more like a legitimate relationship, the steps someone can take to protect themselves are still the same. Anytime a prospective partner sends you a picture of themselves, use Google’s reverse image search to make sure they didn’t steal it from someone else’s social media. If they claim to be working overseas or somewhere where they can’t travel from freely, there’s a good chance they’re a scammer. Lastly, if they ask for money without meeting first, it’s almost guaranteed that they’re a scammer.
A new report has just come out that states rideshare drivers for services like Lyft and Uber are being targeted in scams, again. Anything connected to the internet is vulnerable to one scam or another, and that seems to be affecting rideshare drivers as well. Except this time, as the cliché goes, the calls seem to be coming from inside the house.
The drivers are being locked out of their Uber or Lyft accounts by scammers. The scammers pose as Uber or Lyft themselves. The drivers typically receive a call from the scammers posing as whichever service they drive for. The scammers will tell the drivers there is something wrong with their account, or their account has been suspended after a customer complaint.
After a moment, the scammers will tell the drivers that they need to verify the driver’s identification. A code will be sent to the driver through text message, and they’ll be asked to repeat that code to the caller. This code is actually the code to reset the driver’s password to their account. Once the scammer gets a hold of that code, they can change the password on the account, locking the driver out.
From there, the scammers change where the driver’s payment is supposed to go to the scammers bank account. Then the driver’s account is drained of all the driver’s current earnings. This scam can cost a driver hundreds of dollars.
The new report about this scam sheds some more light on it since the last time we posted about this. One driver from Portland who fell victim to this scam said the caller talked like they worked in the industry. He said they knew all the company jargon and completely fooled him into handing over his account.
Lyft has told the media they will never call a driver asking for personal information unless the driver reaches out first.
Again, you may not be a rideshare driver, but you could hold any another position in the gig economy, which is also vulnerable to this scam.
If you happen to receive such a phone call, politely inform the caller that you will return their call and take the initiative to verify the situation directly through the platform. Nearly all gig economy applications should offer a feedback or contact option within the app or website, allowing you to reach out to the company for clarification.
First, there was phishing, the emails from scammers that tried to get you to click on malicious links. Then there was smishing where scammers tried to get you to click on malicious links in SMS/text messages. Now, there is a new scam called ‘quishing’, which involves QR codes.
QR codes are similar to the bar codes that get scanned at the supermarket. Except, in the case of QR codes, they direct you to a website. They’re essentially fancy links. When you scan a QR code with your phone’s camera, a URL will pop up for you to click on. While QR codes are used in many industries, their most common use is for advertising. You might see an ad that contains a QR code that will direct you to a sale on a retail site, for example.
Scammers are now said to be sending emails containing QR codes. The scam emails are made to look like they’re being sent from well-known brands and companies. The email will ask the recipient to scan the QR code to receive some kind of discount or special offer. What actually happens when the code is scanned, the victim is taken to a website that infects their device with malware. From there, the scammers can potentially access any app you may have on your phone. The QR code could also take you to a website that’s cloned from the brand the scammers are imitating, where a victim will be asked for personal or financial information.
After scanning a QR code, take a close look at the URL or web address it leads to. Be cautious if it appears to be misspelled, overly complex, or has a suspicious domain.
If you happen to scan a fraudulent QR code, it’s crucial to promptly update your passwords for any affected accounts to prevent unauthorized access by scammers. Additionally, take immediate measures to enhance the security of your financial accounts. Enabling two-factor authentication (2FA) on these accounts is another effective way to bolster their protection against unauthorized access.
FBI offices across the country are warning citizens about a new scam that’s said to be plaguing Americans. The scam is called the ‘phantom hacker’ scam and is bears a striking similarity to the pop-up tech support scam.
If you’ll recall, in the pop-up scam, internet users can receive a pop-up on their device that claims the device has been hacked, This pop-up will also claim to be from a big tech company like Microsoft or Apple, and will include a phone number for the device’s owner to call for tech support. The phone number actually goes to a call center that’s part of a larger scam ring.
The user will be asked to give remote access to the supposed tech support person. After a scan, the scammers will tell the user, the user’s bank account has been hacked. The tech support scammer then tells the user, they’ll be receiving a call from their bank’s fraud department. The victim will then be directed to mover their money to a ‘safe’ account for protection. That safe account is actually a bank account that belongs to the scammers.
Now, the scam has been modified. After receiving a call from the scammers posing as the bank, victims are instructed to move their money to a government protected bank account. To make the scam appear more legitimate, victims have been receiving correspondence that appears to come from the Federal Government. The correspondence provides instructions to the victim on how to move their money to the government protected account by wire transfer.
The reason it’s called the phantom hacker scam is because there is no actual hacker involved. If someone were to hack into someone’s bank account, the account would be drained instantly. There is no time-limit that hackers have to wait for before stealing someone’s money or data.
To better protect yourself from this kind of scam, educate yourself and others about the common signs of pop-up scams, such as unsolicited pop-ups or alarming messages, and never share personal or financial information with unknown sources. By following these precautions and maintaining a healthy dose of skepticism online, you can significantly reduce the risk of falling victim to pop-up scams and protect your digital security.
Today, we have two scams, while having different paths of entry, they both have the same outcome. That outcome is to get you to give the scammers a brand new phone number in your name.
The first scam is very popular on Facebook Marketplace. When someone lists something for sale, they’ll get a message from a scammer posing as an interested buyer. The buyer says they want to make sure they’re not dealing with a scammer, so they’ll ask for the seller’s phone number.
The seller will receive a text message on their phone containing a six-digit verification code. The scammer will then try to convince the seller to share that code. But in reality, what these scammers are up to is creating their own Google Voice account linked to the seller’s number. Once they have that Google Voice number, they can carry out more scams, and the trail leads back to the seller instead of the scammer.
Again, the second scam is similar but more distressing. In this version of the scam, the scammers will look for missing pet notices, either on social media or posted around town. The scammers will call the number listed and claim to have the lost pet from the notice. This time, the scammer will again have a code sent to the lost pet’s owner, and then the scammer will ask for the code to supposedly verify the owner’s identity. Instead, they’ll use that code to open a Google Voice account using the pet owner’s phone number.
It’s crucial to never share online authorization codes with strangers who call you. These codes often provide access to your accounts and sensitive information. Scammers may pretend to be someone trustworthy, but giving them these codes can lead to identity theft, financial loss, and other security breaches. Always verify the identity of the caller independently and refrain from sharing any sensitive information, especially authorization codes, to protect yourself from fraud and cyberattacks.
With all the politicizing that has happened around student debt relief in the past few years, it’s no wonder people are confused about the status of their student loans. This month, federal student loan payments are set to resume. With that, scammers have become reinvigorated to prey on the confusion of those with student loan debt and are out in full force to take financial advantage of those who were already struggling to make their loan payments.
These scams typically involve deceptive tactics that promise swift and complete relief from student loan obligations, often with enticing offers of reduced or even eliminated debt. However, the perpetrators behind these schemes exploit the lack of awareness and understanding surrounding legitimate forgiveness options.
Scammers often reach out to potential victims through phone calls, emails, or social media advertisements. They may claim to be from a government agency, a reputable loan servicing company, or a nonprofit organization specializing in debt relief. They’ll make enticing promises of immediate and complete student loan forgiveness, regardless of the borrower’s financial situation or eligibility.
To access their supposed services, scammers require upfront fees or request personal financial information. Legitimate student loan forgiveness programs do not charge upfront fees, so this is a significant red flag. They may pose as loan servicers and request sensitive personal and financial information, such as Social Security numbers and bank account details. This information is then used for identity theft or other fraudulent activities.
After collecting fees or personal information, the scammers disappear. Victims are left with the same or even more substantial student loan debt, often facing financial hardship due to the money they lost to the scam.
Legitimate student loan forgiveness programs do not charge upfront fees. If someone requests money upfront before providing assistance, it is likely a scam. Avoid making payments or sharing personal information, especially your Federal Student Aid ID and login information.
To find information about federal student loan forgiveness programs, visit the official U.S. Department of Education website or relevant government agency websites. These sites provide accurate and up-to-date information on legitimate programs, and also provide information about scams.
Normally, when someone hears about a utility company scam, they may think about the shut-off scam. This is when scammers call their victims posing as the local power, water, or heating company. The victim is told they’re behind payments on their account, and their service will be terminated in 15–30 minutes if they don’t make a payment over the phone. Scammers will typically demand payment in nontraditional methods that are difficult to trace, like gift cards, wire transfers, or cryptocurrency. Now, there’s a utility scam that’s trying to fool victims with honey instead of vinegar, so to speak.
Reports out of Upstate New York say scammers are now calling their victims, but instead of threatening them with a blackout, they’re promising them a payday. The victims are being told they overpaid their last bill and are now due a refund. But, as always, whatever payment amount the scammers are offering pales in comparison to the financial damage that could happen to victims. The scammers will tell their victims in order to receive the refund, the victim will need to provide their credit/debut card number or their checking account information. If a victim were to provide this information to a scammer, they could find their bank account depleted and their identity stolen.
Most companies wouldn’t go out of their way to call a customer to let them know they have a refund due. In most cases, especially where utilities are concerned, if someone has overpaid their balance, the company won’t notify the customer until the next month’s statement goes out. Sometimes the credit will be applied to the next month’s balance, or will show up as a negative balance on the monthly bill.
The same goes for the shut-off scam. If someone were to be behind on their account where they’re in danger of having their service terminated, they’ll be warned by mail first. That mailing will also contain the date when services are scheduled to be turned off.
If you receive calls from someone claiming to be from your local utility, and they’re either threatening to shut-off service, or promising you a refund, hang up, and call your utility company at the number listed on the monthly statement.
You may also want to routinely check your utility company’s website, as many of them will have warnings about local utility scams.
One of the more cruel things about scams is that once a scammer finds a victim who gives them money, the scammers will try to get more money out of that victim. Take the puppy scam, for example. Once the victim pays for a puppy that doesn’t exist, the scammers will send the victim repeated requests for money under the guise of special travel crates, insurance, and emergency vet fees. Unfortunately, we’ve seen multiple victims of the puppy scam pay multiple payments to their scammers. While the puppy scam is the more common scam where multiple payments happen, it can occur in almost any scam. An elderly Florida woman sadly found that out the hard way when she fell victim to the grandparent scam.
For those who may be unfamiliar, the grandparent scam is when scammers pose as one of the victim’s grandchildren. They’ll call the victim claiming to be in some kind of trouble and need money to bail them out.
In this instance, the scammer called the Florida woman, claiming to be her grandson. He said he got into a car accident with a pregnant woman who lost her baby. This is a common claim used in grandparent scams, as it tries to make the phony charges seem serious while also trying to garner sympathy from the victim. Scammers are masters of emotional manipulation.
The ‘grandchild’ then handed the call over to someone he said was his friend’s father, who just happened to be an attorney. In actuality, the attorney was the scammer’s partner, who put on a good enough show.
The phony attorney told the woman her grandson needed $36,000 for bail. When the woman told the scammer she didn’t have that kind of money, the scammer settled for $18,000. After she withdrew that money from the bank, she was instructed a courier would come by her home and pick up the money.
That’s not how bail works in the real world. Once bail is set, it typically stays at that amount. It can go up, but it seldomly goes down. Also, bail is never picked up by a courier. It’s typically paid at the courthouse or through a bail bondsman.
You would think that $18,000 would be enough for this scammer, but they kept making more ridiculous claims in order to get more money. The fake attorney told the woman that her grandson was caught taking selfies in the courtroom, which incurred an increase in bail of $16,000. This time, the woman was told to send cash through FedEx to another state, and that the judge placed a gag order on the case, meaning she couldn’t talk to anyone about the matter, including family.
If someone were to be arrested, they would not be allowed to have their phone on them in the courtroom, so courtroom selfies are highly unlikely. Scammers will also use the gag order card to prevent victims from talking to other family members. That’s not how a gag order works, however. Gag orders are typically only issued to participants of a trial. If someone tries to tell you over the phone, there’s a gag order in place, they’re more than likely trying to scam you. No one can stop you from talking to your family.
Then the scammer tried to get a third payment from the grandmother, The scammer claimed that the grandson violated the gag order and the bail had been raised another $12,000. When the woman tried to get the $12,000 from her bank, she was told by a bank employee, she was told she was being scammed.
To avoid falling victim to the grandparent scam, it’s important to be skeptical of unexpected phone calls or emails from people claiming to be a grandchild in distress. Don’t give out personal information or money without verifying the identity of the caller. If you are unsure if the person is truly a grandchild, ask them questions that only your real grandchild would know the answer to. Additionally, consider setting up a code word with your grandchildren to confirm their identity before providing any information or assistance. Lastly, if you do receive a suspicious call or email, please report it to the appropriate authorities.
A small but successful bank in Southwestern Kansas recently closed its doors after losing $12 million to a cryptocurrency scam. It was one of only two banks in its rural Kansas town, and its loss could be devastating to the local community’s economy. The bank was known for working with farmers in the community who may no longer have that resource available to them. Thankfully, the bank’s customers are protected mostly by the Federal Deposit Insurance Corporation (FDIC), bank shareholders are left holding the bag. So, what scam caused the bank to collapse? It’s believed to have been the pig butchering scam.
The pig butchering scam is when a scammer convinces their victim to invest in cryptocurrency through a phony exchange. The victim will be led to believe their initial investment has exponentially grown. However, when the victim tries to withdraw their money from the exchange, they’ll be told they need to pay an additional fee, which can be as much as the initial investment.
Typically, we discuss the pig butchering scam as a version of the romance scam, but it doesn’t have to always be so salacious. It can be as simple as someone you’ve recently met suggesting you should invest in cryptocurrency.
It’s unclear if that’s what happened in the Kansas town, since the bank’s collapse is still under investigation. However, what is known is that the bank’s CEO allegedly asked a client for a $12 million loan, so he could get his money out of a cryptocurrency investment. The client was said to be assured that the investment wasn’t made with the bank’s money. The CEO is said to have told his client he ‘knew someone’ who was helping him invest in crypto, but there was an issue with the payment, and he needed to put more money back in. Again, we can’t say for sure, but this sounds like the typical script for the pig butchering scam.
The bank CEO was no shady dealer either. He was a known pillar of the community who was trusted by clients and customers alike. If we had to hazard a guess, it sounds like someone got into his ear and tricked him into the scam. Unfortunately, it was to the tune of $12 million.
The point to this blog post is twofold. The first is, no matter who you are and how experienced you are in your respective field, anyone can fall for a scam. The second is that scams can not only have a devastating personal effect, but can devastate a community if someone isn’t careful.
The crypto world is crazy enough without scammers trying to take your money. Only dive into crypto if you’ve done your homework. If someone you’ve never met face-to-face starts pushing you to invest with their so-called “expert” advice, chances are they’re not legit.
Leave a Reply