Tagged: phishing Toggle Comment Threads | Keyboard Shortcuts

  • Geebo 8:00 am on September 19, 2025 Permalink | Reply
    Tags: , , phishing, ,   

    Lottery Winner Texts Are a Scam 

    By Greg Collier

    A new wave of fraudulent text messages has been reported in North Carolina and across the country, with scammers posing as generous lottery winners offering to share their supposed jackpot fortunes. The Federal Trade Commission warns that these messages are not legitimate and advises consumers to exercise caution when receiving such unexpected communications.

    One example circulating now claims that the recipient has been chosen at random to receive one million dollars in cash and a new car. The message explains that the selection was made by an automated system and provides a number to contact a so-called managing director with a special claimant code. When reporters attempted to follow the instructions, the call could not be completed, but the text line produced a swift response. Soon after, the sender requested detailed personal information, including name, address, marital status, occupation, age, income, and even a photograph.

    To test the claim further, reporters tried to initiate a video call, but the call went unanswered. Instead, another message arrived from a foreign number containing a picture of a duffel bag stuffed with cash. The elaborate performance only underscored the deceptive intent.

    According to the Better Business Bureau, the very nature of unsolicited text messages promising money is an immediate red flag. Experts emphasize that responding only confirms to scammers that a real person is at the other end, which encourages them to continue targeting the victim. The goal is almost always to obtain enough personal information to commit identity fraud or to manipulate the target into paying money under false pretenses.

    The Federal Trade Commission stresses the importance of deleting and reporting these texts rather than engaging. Responding can expose recipients to identity theft or malware, especially if links are clicked. Scammers are adept at creating a sense of urgency and legitimacy, but regulators urge people to verify any extraordinary claim through trusted channels rather than through the contact information provided in suspicious messages.

    This type of fraud is not rare. The FTC estimates that Americans lose tens of millions of dollars every year to prize and sweepstakes scams, with older adults among the most frequent targets. The tactics vary, but the pitch is nearly always the same. A promise of sudden wealth, accompanied by requests for personal details or money. A critical fact to keep in mind is that legitimate lottery organizations do not notify winners by text message or through social media, and they do not ask for photographs, income details, or banking information in order to release winnings.

    For anyone who has already replied to one of these messages, experts recommend taking immediate steps to protect personal security. This can include contacting your mobile carrier to block further messages, checking your credit report for unusual activity, and notifying your bank if financial details were shared. It may also be wise to change passwords associated with accounts that could be linked to the information provided. Even if no money was lost, reporting the interaction to the FTC and the BBB helps create a clearer picture of the scam’s reach and may prevent others from becoming victims.

    While these scams are persistent, their effectiveness lies in exploiting the universal hope of financial relief and good fortune. By mimicking the thrill of winning, criminals draw people into sharing information or parting with money. Recognizing the warning signs and taking quick protective measures can turn a potential loss into an important lesson. The safest response remains simple. Treat unexpected lottery offers not as opportunities, but as clear warnings to protect yourself and your information.

     

  • Geebo 8:05 am on September 16, 2025 Permalink | Reply
    Tags: , Charlie Kirk, , phishing, ,   

    Scammers Target Charlie Kirk Tragedy 

    By Greg Collier

    Authorities in Georgia are warning residents about a scam that has surfaced in the aftermath of the recent shooting of Charlie Kirk. Reports have circulated of fraudulent text messages being sent to cell phone users, claiming to be from Kirk’s wife, Erika, and urging people to donate in his honor. The messages are written in emotional language, suggesting that the movement Kirk built will grow stronger if people join in support, and they include a link for recipients to click.

    Law enforcement in both Effingham County and Habersham County has confirmed that the messages are not legitimate. Officials have stressed that scammers are attempting to exploit a national tragedy for financial gain. They cautioned that clicking on the links may expose victims to identity theft, malware, or fraudulent financial schemes. Instead of helping Kirk’s family or continuing his mission, the messages are designed to deceive and manipulate those who are grieving or sympathetic.

    Residents have been urged to delete the texts immediately and to report them to their carriers or local authorities. Officials also remind the public that legitimate fundraising efforts will never come through random text messages with suspicious links.

    This is not an isolated tactic. Scammers are always looking to make money out of any tragedy, whether by pretending to raise funds for victims, impersonating family members, or setting up fake charities. After natural disasters such as hurricanes or wildfires, fraudulent charity websites often appear within hours, and after the deaths of public figures, fake memorial fundraisers frequently surface. The scam tied to Kirk’s death follows the same predictable pattern, using grief and confusion as tools to steal.

    Authorities say awareness is the strongest defense, and anyone who receives such a message should recognize it for what it is, a calculated attempt to profit from pain.

     

  • Geebo 8:00 am on August 8, 2025 Permalink | Reply
    Tags: , phishing, , ,   

    Amazon Refund Text Scam Alert 

    Amazon Refund Text Scam Alert

    By Greg Collier

    Scammers are once again impersonating Amazon in an effort to steal money and personal information from unsuspecting consumers. This warning comes from the Federal Trade Commission, which reports that fraudulent text messages are claiming there is a problem with a recent purchase and offering a refund.

    The messages appear to come from Amazon and state that a “routine quality inspection” has determined that an item recently purchased does not meet the company’s standards or has been recalled. The text promises a full refund without the need to return the product but instructs the recipient to click a link to claim the money. In reality, there is no refund, and the link leads to a phishing site designed to obtain financial or personal information.

    Amazon is a frequent target for impersonation in scams because of its large customer base and the high volume of orders placed each day. Many recipients of these texts will have made a purchase recently, which makes the scam seem more believable and increases the likelihood they will interact with the message.

    Legitimate companies do not issue refunds through unsolicited text messages, and consumers should be cautious when receiving unexpected communications. Rather than clicking any links or replying to the message, shoppers concerned about the authenticity of such a notice should contact the retailer directly using verified channels. Checking an account through the official website or app can confirm whether a product recall or quality issue actually exists.

    Suspicious texts can be reported to mobile carriers by forwarding them to 7726, which spells “SPAM” on most devices, or by using the built-in junk reporting feature on a smartphone. After reporting, the message should be deleted to prevent accidental interaction. Consumers who believe they have been targeted by this type of scam can file a report with the Federal Trade Commission to help stop fraudulent activity.

     

  • Geebo 8:00 am on July 29, 2025 Permalink | Reply
    Tags: , , phishing, , State Code 15C-16.003,   

    Fake DMV Texts Cite Bogus Laws 

    By Greg Collier

    A phishing scam that has been circulating in multiple states is continuing to evolve, with a new variation citing a fictitious state code to lend credibility to fraudulent messages. The scam targets drivers by sending official-looking texts that claim the recipient owes traffic fines or faces legal penalties, such as license suspension or damage to their credit score.

    The latest version of the scam has appeared in Illinois, California, Minnesota, New Jersey, and Tennessee. In each instance, recipients receive alarming messages that appear to come from a state motor vehicle agency. The messages often claim that an outstanding traffic ticket needs to be paid immediately or that the ticket will be referred to a toll agency for an additional fee. A recent variation includes a fabricated code, such as “State Code 15C-16.003,” to make the warning seem more legitimate. This code has no basis in any actual state law.

    These text messages usually contain a link that, when clicked, leads to a fake website designed to steal personal or financial information. In some cases, the scam also involves spoofed phone numbers that appear to come from law enforcement agencies or government offices. These tactics are intended to pressure recipients into taking immediate action without verifying the source.

    State agencies across the country have issued warnings to residents, clarifying that they do not send text messages demanding payment or threatening legal action. Official notices regarding traffic violations or unpaid fines are typically sent by mail. Payments are usually made through secure state websites, not through third-party links sent via text.

    To avoid falling victim to this scam, drivers are advised not to respond to unexpected text messages, especially those that include suspicious links or legal threats. Instead, they should verify the legitimacy of any message by contacting their state’s department of motor vehicles or public safety office directly. Residents who believe they have received a fraudulent message are encouraged to report it to the Federal Trade Commission or their state’s consumer protection office.

    This scam has persisted for months and continues to adapt. The inclusion of a fictitious legal code is the latest effort to deceive and pressure recipients. Remaining cautious and informed is essential to protecting personal information and avoiding financial loss.

     

  • Geebo 8:00 am on July 2, 2025 Permalink | Reply
    Tags: , , PHI, phishing,   

    Fake Health Investigators Target You 

    By Greg Collier

    The Federal Bureau of Investigation has issued a warning about a new wave of scams where cybercriminals impersonate health fraud investigators. As detailed in a report from Bleeping Computer, these schemes are designed to trick both patients and healthcare providers into surrendering sensitive data, including medical and financial records.

    According to a recent advisory from the agency, fraudsters are posing as legitimate health insurers or members of investigative teams. Victims are contacted through emails or text messages crafted to appear authentic. The goal is to pressure individuals into sharing protected health information or personal financial details. In some cases, the messages claim the recipient must provide reimbursements for supposed overpayments or services not covered by insurance.

    The messages typically mimic the language and branding of trusted healthcare entities, making them difficult to distinguish from genuine communications. Once the information is obtained, it can be used for a range of criminal activities, including identity theft and insurance fraud.

    Federal agencies recommend taking caution with any unsolicited messages requesting personal or medical information. They advise verifying the authenticity of such communications by contacting the insurer directly. Security experts also emphasize the importance of strong passwords and Multi-Factor Authentication to protect against account breaches.

    The healthcare sector remains a frequent target of these attacks. In a separate notice, the Department of Health and Human Services highlighted how attackers are using social engineering to exploit IT help desks at healthcare organizations. By gaining internal access, they can reroute financial transactions through business email compromise tactics, often with devastating results.

    As impersonation scams evolve, public awareness and vigilance remain key defenses. Verifying communications and safeguarding personal data can help prevent falling victim to schemes that increasingly blur the line between real and fake.

     

  • Geebo 8:00 am on June 23, 2025 Permalink | Reply
    Tags: phishing, , , ,   

    Scammers Target Drivers With Texts 

    By Greg Collier

    Toll scams are among the most common digital frauds circulating today, and a recent case out of Utah demonstrates how easily they can catch someone off guard. After completing a cross-country road trip with her husband, one woman found herself navigating toll charges from several different states. She expected to receive payment notices by mail. So when a text message arrived in January asking her to settle an outstanding toll, it didn’t seem suspicious at first.

    The timing felt plausible. She was away from home and in a hurry, so she clicked the link and entered her payment information to resolve the issue quickly. Not long after, her credit union contacted her about two unauthorized charges totaling several hundred dollars. She hadn’t made the purchases. She had been scammed.

    These toll scams are convincing because they prey on routine behavior. When someone knows they’ve driven on toll roads, receiving a message about an unpaid toll feels legitimate. The scam works by mimicking a real toll agency’s communication style and creating a sense of urgency. Victims are told they must pay promptly to avoid penalties or legal consequences. That fear can override skepticism, especially when the message arrives during a busy moment.

    In this case, the text included a payment link that led to a fake site resembling a toll collection portal. Once the victim submitted her debit card information, the fraudsters immediately used it to make unauthorized purchases. This incident underscores the risk of entering sensitive information through links received by text, especially on mobile devices where it’s harder to spot red flags.

    One key detail that might have helped expose the scam was the phone number itself. The message came from a foreign country code, completely unrelated to the toll agency it claimed to represent. A closer look would have revealed that the Massachusetts toll system is unlikely to use a number based in the Philippines. Small inconsistencies like these often go unnoticed when people are trying to act quickly.

    The victim later realized that using a debit card added another layer of risk. Unlike credit cards, debit transactions can be harder to dispute, particularly if a PIN was entered. Consumer advocates often recommend using credit cards instead for online payments, as they offer stronger fraud protections.

    Toll scams like this continue to circulate because they rely on timing and familiarity. They succeed when people are distracted or expecting a message that appears to match their recent activity. Recognizing the warning signs, suspicious links, unfamiliar area codes, and rushed payment demands, can make a crucial difference. Slowing down, verifying the source, and avoiding financial transactions over text can help protect against this increasingly common form of fraud.

     

  • Geebo 8:00 am on June 2, 2025 Permalink | Reply
    Tags: , ghost tap, , , phishing,   

    Ghost Tap Scam Bleeds Millions 

    By Greg Collier

    A new form of credit card fraud, referred to as the “Ghost Tap” scam, has been identified and is currently under investigation by authorities in multiple states. The Knox County (TN) Sheriff’s Office recently issued a public warning regarding this emerging threat. According to their update, the scam involves criminal groups using digital wallet applications to make fraudulent purchases with stolen credit card data. These purchases often take the form of gift cards, which are then sold online to obscure the trail of the original transactions.

    Investigators have linked the operation to organized criminal rings primarily involving foreign nationals, who travel from states with large populations and more intense enforcement to smaller regions they perceive as less guarded. Since August 2024, law enforcement officials have apprehended over ten suspects connected to this scheme in Knox County alone. Authorities believe losses are in the millions due to these fraudulent transactions.

    The process is swift and largely invisible to the average person. Stolen credit card information is stored within a digital wallet, allowing suspects to make contactless purchases without possessing a physical card. This tactic enables them to bypass certain security checks and quickly convert the fraudulent funds into untraceable assets like gift cards. These cards are then resold through various online marketplaces, making it difficult to identify the original source of the funds.

    Officials warn that the Ghost Tap scam often operates in tandem with phishing schemes. Victims may receive text messages claiming there are problems with toll payments, package deliveries, or bank accounts. The messages typically include a link urging the recipient to enter personal or financial information. These tactics are used to collect data that may later be exploited in digital wallet fraud.

    To counteract these threats, the sheriff’s office advises the public to remain skeptical of unsolicited messages requesting sensitive information. They also stress that no legitimate agency will ever demand payment through gift cards or request private data over the phone. Any such contact should be treated as suspicious and reported to the appropriate authorities.

    The local Organized Retail Crime Unit has been central to recent enforcement actions, utilizing new investigative tools to identify suspects as soon as they arrive in the area. Officials hope that raising awareness will help deter future incidents and encourage prompt reporting of suspicious behavior. With digital wallets becoming increasingly common, scams like Ghost Tap represent a growing challenge that demands both public caution and coordinated enforcement.

     

  • Geebo 8:00 am on May 29, 2025 Permalink | Reply
    Tags: , , phishing, ,   

    Fake DMV Texts Are the New Nationwide Scam 

    By Greg Collier

    A new phishing scam is spreading across the country, targeting drivers with fraudulent text messages that appear to come from official motor vehicle departments. These messages claim the recipient has unpaid traffic fines and threaten license suspension or other penalties unless immediate action is taken. In reality, these texts are not from any legitimate agency and are designed to steal personal and financial information.

    In Georgia, the messages reference a nonexistent Department of Motor Vehicles and warn about suspended driving privileges unless payment is made. Officials in that state have clarified that there is no state DMV and that real agencies, like the Department of Driver Services, do not use text messages for these purposes.

    In Illinois, the scam texts include specific legal codes, threatening prosecution and credit score damage. The messages cite fake administrative laws and demand payment through a fraudulent link. State officials have warned that such texts are not a legitimate form of communication for any action involving traffic violations or license status.

    Louisiana drivers have received similar texts claiming they owe fines. The state’s Office of Motor Vehicles confirmed these messages are not legitimate and has issued warnings advising residents not to click on any links. Officials say these scams are part of a broader phishing campaign that could also lead to malware infections or identity theft.

    This wave of fake DMV text messages appears to be the latest version of the toll scam texts that circulated widely earlier this year. In those cases, scammers pretended to represent toll agencies and used a similar strategy of creating urgency to push recipients into making fake payments. The transition to impersonating motor vehicle departments suggests that scammers are adapting their tactics to stay ahead of public awareness.

    These scams exploit common anxieties about driving privileges, legal consequences, and unpaid fines. By mimicking the language and tone of government agencies, the messages aim to pressure individuals into quick action before they have time to verify the source. In each case, the fraudulent messages include links to sites that harvest sensitive data or install harmful software.

    As this scam continues to appear in multiple states, it highlights the importance of being cautious with any unsolicited message, especially those requesting immediate payment or personal information. Motor vehicle agencies generally communicate through secure channels and do not use text messages to issue threats or collect fines. Drivers are encouraged to verify any suspicious message by contacting their local agency directly.

     

  • Geebo 8:00 am on May 8, 2025 Permalink | Reply
    Tags: , , , phishing, ,   

    Google Spoof Scam Exposes Flaws 

    By Greg Collier

    Phishing has evolved far beyond clumsy scams riddled with typos and generic threats. It now wears the mask of legitimacy, often cloaked in branding and technical language convincing enough to fool even savvy users. A recent example of this growing trend involves an especially deceptive attack using Google’s own infrastructure as a weapon.

    Cybercriminals have been exploiting Google Sites and other services to distribute phishing emails that appear to originate from Google’s own domain. In this case, a message disguised as a legal request from law enforcement was sent to users, complete with references to subpoenas and the need to review case materials. The message urged the recipient to click on a link to a Google support page, which in reality led to a page designed to harvest login credentials.

    The trap is insidious. The phishing page is hosted on a subdomain of Google.com, lending a false sense of trust to unsuspecting users. Because the site is built with Google Sites, it carries the appearance of a legitimate Google interface. The attackers further muddy the waters by ensuring the phishing email lands in the same thread as previous legitimate security alerts, increasing the likelihood that users will trust it.

    The deeper issue lies in how Google has allowed this vulnerability to persist. The legacy version of Google Sites, still accessible today, permits anyone to publish content on a Google.com subdomain. This opens the door to abuses like malicious scripts and fake credential portals. Google has been warned about this gap in security, yet the core issues remain unresolved. While some reactive measures have been taken, the architecture still leaves room for repeat abuse.

    This raises a broader concern about corporate responsibility in digital security. Google has positioned itself as a cornerstone of online identity and infrastructure, and with that status comes the obligation to protect its users proactively. Allowing these phishing schemes to exploit the trust associated with the Google name creates not just a security risk, but an erosion of that trust.

    Google’s statement suggests users enable two-factor authentication and passkeys as a defense. While this is sound advice, it shifts the burden onto individuals to compensate for shortcomings in the platform’s safeguards. The more sustainable solution would be for Google to close the loopholes that allow bad actors to operate under its umbrella in the first place.

    As phishing continues to mimic trusted entities more convincingly, users must remain cautious. But the companies whose tools are being weaponized also bear responsibility. Until tech giants like Google take these exploits seriously and move swiftly to harden their platforms, the digital wolves will keep getting in, dressed in ever more convincing sheep’s clothing.

     

  • Geebo 9:01 am on January 3, 2025 Permalink | Reply
    Tags: , FasTrak, phishing, , , ,   

    Toll Scams Sweeping the Nation Again 

    Toll Scams Sweeping the Nation Again

    By Greg Collier

    Across the United States, drivers are increasingly becoming targets of sophisticated toll payment scams. These scams often involve fraudulent text messages or emails claiming unpaid tolls. The messages aim to trick individuals into clicking on malicious links and providing sensitive personal and financial information. Authorities and tolling agencies nationwide are warning drivers to stay vigilant and protect themselves from these fraudulent schemes.

    In California, text scams have surged, falsely claiming to be from FasTrak, the state’s electronic toll collection system. The messages often direct recipients to websites that appear legitimate but are operated by scammers. These websites ask for banking or credit card information, exploiting unsuspecting users. Official tolling agencies in California emphasize that they do not send text messages to individuals without accounts and never request payments through unsolicited links.

    South Florida drivers have also reported similar schemes. Fraudulent messages, often labeled as ‘final reminders’, urge recipients to copy and paste links into their browsers to resolve alleged unpaid tolls. The realistic appearance of these scams, from their professional-looking websites to the urgent tone of their messages, has made them particularly effective. Local transportation officials have reiterated that they do not request payments or account actions via text messages.

    In New York, E-ZPass users have been targeted by messages claiming to be from ‘NY Toll Services’. These messages ask for sensitive information like Social Security numbers and dates of birth, details that legitimate toll services never request. Officials have reminded drivers to only use authorized websites for account management and toll payments.

    The problem isn’t confined to these regions. Similar scams have been reported in Illinois, Pennsylvania, and other parts of the country. These widespread schemes often exploit the increasing reliance on electronic toll collection systems, taking advantage of the convenience and automation that make such systems attractive to drivers.

    The scams share common tactics: a sense of urgency, professional presentation, and the impersonation of trusted entities. Cybersecurity experts urge individuals to exercise caution when receiving unsolicited messages, especially those prompting immediate action. Carefully inspecting sender information, avoiding unfamiliar links, and independently verifying claims by contacting tolling agencies through official channels can go a long way in preventing fraud.

    Those who suspect they have encountered a toll scam are encouraged to report it to federal authorities, including the FBI’s Internet Crime Complaint Center. Additionally, anyone who may have inadvertently shared personal or financial information should take immediate steps to secure their accounts and monitor for suspicious activity.

    As these scams continue to evolve, awareness is the most effective defense. By recognizing the signs of phishing attempts and relying only on official communication channels, drivers can safeguard their information and help curb the impact of these nationwide toll scams.

     

← Older posts

c
Compose new post
j
Next post/Next comment
k
Previous post/Previous comment
r
Reply
e
Edit
o
Show/Hide comments
t
Go to top
l
Go to login
h
Show/Hide help
shift + esc
Cancel