Greg's Corner

Tagged: identity theft Toggle Comment Threads | Keyboard Shortcuts

• 

  Geebo 8:00 am on October 14, 2021 Permalink | Reply
  Tags: healthcare ( 41 ), identity theft, medicare ( 18 ), open enrollment ( 5 ), Scams ( 1,398 )   

  Medicare open enrollment brings out scammers 

  

  By Greg Collier

  This Friday, October 15th 2021, starts the period known as Open Enrollment for all Medicare recipients. Until December 7th, Medicare recipients will be able to decide if they want to stay with their current Medicare coverage or switch to a new insurer. With so many options to choose from and so many changes made each year, it can be difficult for seniors to keep up with all the necessary policies and paperwork each year. Unfortunately, Open Enrollment is also open season for Medicare scammers and fraudsters. Not only are there scams to go along with Open Enrollment, but some bad business practices as well.

  While not technically a scam, some less than reputable insurance brokers will try to pressure seniors into switching to their company’s Medicare Advantage plan. While Advantage plans can be beneficial to some, they can also be limiting to others. It all depends on the patient’s personal needs, but some insurance agents are just looking for the sale. If you’re thinking about switching from Medicare to a Medicare Advantage Plan, please take the time to research the advantages and disadvantages of doing so. Don’t let some salesman pressure you into a decision that you may regret having for the following year.

  As far as scams go, identity theft is often the biggest threat seniors face during Open Enrollment. Scammers will call their victims posing as being from the government with an official-sounding title like ‘health care benefits advocate’, or something along those lines. The victim will be promised that they’ll be signed up for the same or better coverage at a lower price. The phony agent will ask for all the victim’s personal information, including their Medicare number. Medicare fraudsters will then use the stolen number to charge Medicare with fraudulent procedures or items which could affect the victim’s benefits down the line. These scammers will also use high-pressure tactics to get the victim’s information, like telling the victim their benefits could expire if they don’t give their information right now. The calls can even appear as they’re coming from Medicare’s official phone number.

  If you’re already enrolled in Medicare, your Medicare plan will only call you if you’re already a member of that plan. If you feel uncomfortable taking the call, you can always call your insurance company’s customer service number on the back of your insurance card.

   

  Leave a ReplyCancel reply
• 

  Geebo 8:00 am on October 7, 2021 Permalink | Reply
  Tags: data breach ( 33 ), identity theft, privacy ( 46 ), Safety ( 45 ), social media ( 81 ), Twitch   

  Major social media platform experiences historic data breach 

  

  By Greg Collier

  If we had to hazard a guess, we’d assume that most of our readership do not use livestreaming platform Twitch. If you’re not familiar with Twitch, it’s most famous for its users who stream themselves playing video games, although it does have other content such as musicians and talk shows. Yesterday, Twitch was the victim of a massive data breach of epic proportions, which has left some of its top users vulnerable to potential cyberattacks.

  Yesterday, hackers released a veritable cornucopia of Twitch’s inside information. This was a 128 GB file that contained the platform’s source code. In layman’s terms, hackers released all the code that the platform runs on to the public. Some of this code contained information such as how much some of Twitch’s top earners make, which for some is in the millions of dollars. Twitch streamers make a lot of their money through monthly subscriptions and viewer donations.

  What’s more concerning to the average Twitch user is that it’s been alleged that usernames and passwords have been exposed. If this is true, this could lead to a rash of identity theft if Twitch users use the same password elsewhere online. While this breach may not affect the majority of our readership, it could affect your kids, as Twitch is massively popular among a younger audience.

  This data breach could be used to teach your kids a lesson in online security. Find out if they have a Twitch account and if they use their Twitch password anywhere else online. Recommend that they not only change their password to Twitch, but also to change it if they use the same password anywhere else. You should also recommend to them that they should not use the same password on multiple platforms. It’s never too early to have your children learn the value of internet security.

   
• 

  Geebo 8:00 am on October 1, 2021 Permalink | Reply
  Tags: Android ( 8 ), apps ( 15 ), gift cards ( 102 ), Google Play Store ( 2 ), identity theft, robocalls ( 8 ), Scams ( 1,398 ), subscription fees ( 5 ), voice cloning ( 24 )   

  Scam Round Up: Android Apps, Recorded Calls, and more 

  

  By Greg Collier

  Today, we’re closing out the week with another trio of scams that you may not normally come across in your daily life.

  ***

  Internet security experts are reporting about a wave of apps from the Google Play Store that have scammed Android users. The apps vary from photo editing to astrology, but their real purpose is to add charges to your phone bill. The apps tell users that they’ve won some form of free gift. All the user needs to do is enter their phone number into the app. However, instead of receiving a gift, the app signs users up to a monthly subscription fee of $42 a month that’s added to the user’s monthly phone bills. For some users, that’s more than double their monthly phone bill. Even though there’s an app in the Play Store, that doesn’t make it automatically secure. Always checks the permissions the app is asking for and avoid giving the app makers any more personal information than they need.

  ***

  Robocalls have been a scourge plaguing humanity for a few years now. It’s safe to assume that most of us have received a call asking us about our car’s warranty, even if some of us don’t own cars. However, some of these spam robocalls are more sinister than they appear. According to security experts, your only response to these calls should be to hang up. The last thing you want to do is say anything on these calls. The call will ask you if you want to stop these calls, just say yes. If you say yes, scammers can record your voice and use it to authorize a fraudulent purchase on your credit card. It also shows that there is someone at your phone number, which could result in you being targeted for more scam calls. While some people like to engage scammers, it’s a better strategy to just hang up.

  ***

  And of course, we can’t talk about scams without usually talking about gift cards in some form or fashion. A couple in North Carolina randomly received a gift card in the mail that was supposedly worth $400. The couple contacted their local news channel to see if this was a scam and of course, it was. How the scam works is the letter will contain a web link you need to go to in order to activate the card. Once you go to the link, you’re asked to input personal information such as your name, date of birth, and social security number. If you do this, your identity is almost immediately stolen. Please keep in mind that gift cards are the currency of scammers and should only be used for their intended purpose.

  ***

  Thank you for reading, and have a great and safe weekend.

   
• 

  Geebo 8:00 am on September 15, 2021 Permalink | Reply
  Tags: covid-19 ( 48 ), data breach ( 33 ), HIPAA ( 4 ), identity theft, Walgreens ( 2 )   

  Pharmacy data breach exposes millions of customers’ data 

  

  By Greg Collier

  When someone entrusts a billion-dollar company with their medical information, you might assume that they take security seriously. After all, HIPAA violations are no joke. The largest HIPAA fine so far was $18 million paid by a major health insurance company after they feel for a phishing attack, exposing client data in the process. So, say you’re the largest pharmacy chain in the nation. You’ve also tested countless customers for COVID-19. You must have some kind of impenetrable security in place to keep all that information private, right? Maybe not according to security experts.

  A security consultant had his family tested for COVID-19 back in March at a local Walgreens. While getting his family’s test results, he discovered a flaw in Walgreens’ website that exposed customer information related to the COVID-19 tests. This information is said to have contained name, date of birth, phone number, address, and email along with other sensitive information. The consultant tried to get in touch with Walgreens to warn them about the flaw, but they allegedly ignored him. Tech news site, Recode, also investigated the flaw and notified Walgreens about it. Recode even gave Walgreens time to fix the vulnerability before they published their report, but according to Recode, the vulnerability still hasn’t been fixed.

  As of the time of this post, there has been no confirmation that any bad actor has come into possession of any customer information. However, that doesn’t necessarily mean they haven’t. If you used Walgreens for COVID-19 testing since July 2020, you may want to keep an eye on your credit report. This breach could be a potential treasure trove for identity thieves. The information could also be used by scammers to sound more legitimate since they have some personal details of your life.

   
• 

  Geebo 8:00 am on September 3, 2021 Permalink | Reply
  Tags: employment ( 37 ), identity theft, job scam ( 81 ), Scams ( 1,398 ), unemployment scam ( 30 )   

  New job scam steals your identity 

  

  By Greg Collier

  With so many job scams out there, it’s often hard to discern between a legitimate job offering and a scam. More often than not, there is usually a red flag somewhere along the line in the application process. For example, if you’re asked by the potential employer to pay for things like application fees or background checks, that’s a good indicator that the job could be a scam. Even if you get hired, there can still be red flags, such as being asked to deposit a check used for business expenses into your own bank account. But what if scammers were able to mimic a legitimate company while offering a phony position. According to the Better Business Bureau, that’s exactly what is happening.

  A woman in Rhode Island received an email that said she was eligible for a position after the company found her information on a state employment website. She was asked to reply to the email if she was interested in the position. The email appeared to come from a legitimate company in the region and even used the name of an actual company employee. The victim interviewed for the job. The report doesn’t say how she was interviewed, but it’s probably safe to assume it was a virtual interview.

  The scammers sent her a bunch of normal-looking paperwork to fill out and instructed her to verify her identity at a legitimate web portal used by many employers. After she signed in to the portal and gave all her pertinent information, she received a notification that her information was being sent to the California unemployment office. Essentially, the scammers stole her identity out from under her to apply for unemployment benefits in her name.

  If you’re unsure if a job offer is legitimate or not, check the email address the offer was sent from. If the email is from a free service like Gmail or Outlook.com, there’s a good chance the offer may not be real, as most legitimate employers have their own corporate email addresses. You can also go to the company’s website to see if the position you’re being offered is even open.

   
• 

  Geebo 8:04 am on August 20, 2021 Permalink | Reply
  Tags: data breach ( 33 ), identity theft, T-Mobile ( 2 )   

  Millions of customers exposed in phone carrier data breach 

  

  By Greg Collier

  It seems like it’s been a while since we’ve heard of a massive data breach, and believe us when we say this one is massive. T-Mobile is one of the largest cell phone providers in the United States. They recently announced that a data breach took place that exposed the data of around 40 million customers. We’re talking about a lot of vital information, too.

  According to T-Mobile themselves, the data breach included Social Security numbers, birthdates, names and driver license information. However, T-Mobile has also pointed out that the breach did not include credit card or payment information. If that’s what they’re patting themselves on the back for, they may want to rein it in for a moment.

  A lot of potential damage can be done to anyone’s identity if an identity thief has just one of the items exposed. But if they have your Social Security number, your driver’s license info, and your date of birth, that’s like having a skeleton key to your entire life.

  If you’re a T-Mobile customer, it is recommended that you change your account password and PIN. It’s also recommended that you put a freeze on your credit, which is a free service. You would need to contact each of the three major credit bureaus to do so. This would prevent any identity thieves from opening credit in your name. T-Mobile is also offering a free 2-year credit protection service as well.

  The one thing you shouldn’t do if you’re a T-Mobile customer is to ignore the problem, as it has the potential to damage not only your credit, but your personal finances as well. Don’t let someone else’s actions negatively impact your financial well-being.

  Phone hacking rises out of data breach | Greg's Corner is discussing. Toggle Comments

   
• 

  Geebo 8:00 am on May 24, 2021 Permalink | Reply
  Tags: economic impact payment ( 21 ), fake websites ( 11 ), identity theft, phishing ( 79 ), Scams ( 1,398 ), stimulus checks ( 19 )   

  Scammers are still using stimulus checks as bait 

  

  By Greg Collier

  Even after a year and three stimulus payments from the government, scammers are still using the promise of stimulus checks as bait in their ongoing scams. When the stimulus payments were issued, most taxpayers received their payments by direct deposit in their bank accounts. However, for various reasons, a large section of the population had great difficulty in receiving their payments. Scammers are now said to be trying to take advantage of those people in this latest scam.

  According to reports, scammers are sending out emails promising to help its recipients obtain unclaimed stimulus money. The email has a link which takes victims to a website which asks for your personal information, so they can send you information on how to apply for unclaimed stimulus checks. This could lead to a number of scams. First and foremost it could be a front for identity theft, especially if the scammers ask for financial information. This also reminds us of the unclaimed property scam where scammers could be charging money to help you obtain stimulus money that they have no intentions of delivering.

  Please keep in mind that the only people who can help you with a stimulus related issue is the IRS. The IRS will never send out unsolicited text messages or emails, and they only tend to communicate by mail. Anybody else who is promising to get you stimulus money is more than likely a con artist. If you have had issues with getting your stimulus payments, the best place to go to resolve the issue is the IRS’s Economic Impact Payments website. If you think you may have unclaimed money that’s not related to the stimulus payments, you can go to the USA.gov website.

   
• 

  Geebo 8:00 am on April 15, 2021 Permalink | Reply
  Tags: bank scam ( 72 ), charlotte ( 3 ), identity theft, north carolina ( 15 ), PNC Bank ( 3 ), Scams ( 1,398 )   

  Bank promotion leads to identity theft 

  

  Charlotte, North Carolina is one of the major banking capitals of the US. While the primary banking center of the country is New York City, Charlotte has traded the #2 spot with San Francisco for many years. Many national banks either have their corporate headquarters in Charlotte or have a large corporate presence there. Unfortunately, this large banking presence has not stopped bank scams from happening as the local police recently found out.

  The Charlotte-Mecklenburg Police Department have said they recently encountered dozens of residents who have had bank accounts opened in their name. The residents have said that they’ve received letters in the mail thanking them for opening accounts with PNC Bank. Some of the letters even have debit cards included with them. PNC seems to be the target of this scam since they’re running a promotion where a customer can receive $300 for opening an account.

  It’s believed that the residents targeted in this scam must have had their private information leaked in a previous data breach. While reports have not stated it, in similar scams, scammers have had debit and credit cards sent to the victims home address where the scammer is watching the mail so they can intercept the card.

  If you receive a letter like this from PNC or any other bank, you need to act immediately. Call the bank at the customer service number that’s provided with the letter to tell them you did not open that account. It’s also recommended that you contact your local police department as well. Then it’s strongly recommended that you put a freeze on your credit. You can also get a credit alert that will notify you if anyone tries to open credit using your information.

   
• 

  Geebo 8:00 am on April 14, 2021 Permalink | Reply
  Tags: AT&T ( 5 ), Cash App ( 42 ), identity theft, paypal ( 12 ), phone takeover, Scams ( 1,398 ), venmo ( 28 )   

  Scammers stopping cell service can steal your money 

  

  By Greg Collier

  We’ve mentioned this before, but it’s still hard to imagine life these days without your smartphone. It’s been one of those necessities that you don’t leave the house without. If you’re anything like us, we’re sure you’re checking for your keys, identification, and phone before you go out the front door. Now, imagine that you’re out running errands or what have you, and all of a sudden, your phone no longer has any service. No calls, no apps, no texts or anything. If this were to happen to you, it would be more of a problem than not being able to contact anyone. It could have disastrous results for your finances too.

  Recently, in Memphis, Tennessee, two alleged scammers were arrested for reportedly stealing close to $500,000 from AT&T customers. The pair would call into AT&T call centers posing as AT&T employees. They would then be able to get access to customer accounts. With the customer account information, they would call AT&T back and switch the customer’s service to another cellular provider. The scammers then had access to the various apps that the customer may have used. The scammers are then said to have taken money out of apps like PayPal, Venmo, and Cash App.

  While this scam is far from new, we’ve never seen it used on such a grand scale before. Even though AT&T was singled out in this post, it has happened to other providers, again, just not on this scale. This scam usually doesn’t target as many individuals as this one has. Unfortunately, the onus on protecting you from this scam is on the cellular providers. On top of this, customer service representatives for some providers are often under-trained and are asked to handle multiple customers at the same time. This can lead to a lot of fraud slipping through the cracks.

  In some instances, you can set up a PIN or password with your provider that will identify yourself in case someone tries to take over your account. Other than that, the only thing we can recommend is getting in touch with your cellular provider as soon as your service goes out.

   
• 

  Geebo 8:47 am on April 13, 2021 Permalink | Reply
  Tags: Google ( 30 ), Google Photos, identity theft, phishing ( 79 ), Scams ( 1,398 )   

  Google Photos scam wants your password 

  

  By Greg Collier

  It’s difficult to live an online life without using some of Google’s services. For example, if you’re using an Android phone, you’re already entrenched in the Google ecosystem. Because of that, you’re probably using Google services that you might not be aware that you’re using. Google Photos is one of those services. If you use an Android phone you’re probably using Google Photos without even knowing it. In most Android phones, Google Photos will back up the pictures you take with your phone to the cloud. Due to the sheer number of people who use Google Photos, it has become an avenue for identity thieves.

  According to reports, scammers are sending out phony emails that say someone has shared their Google Photos Album with you. These are phishing emails that are said to look authentic. If you click on the link to the supposed photo album you’re asked to enter your Google username and password. Except the website where you just entered your Google information isn’t a Google website. Instead, it’s a website set up by scammers to steal your Google login information.

  Please take a moment to think how much your online life is contained in your Google account. In just your Gmail alone there is probably enough information to steal your identity easily. Between banking information and social media accounts, someone with access to your Google account could essentially take over your identity and ruin it for years to come.

  As is the norm with most phishing emails, you should never click on the link any of these emails contain. On your computer, hover your cursor over the link to see where the link actually directs you. Check for misspellings of actual web addresses used by real companies. Also, don’t click on any links that have been shortened by a link shortening service as they can disguise the links true destination.