Tagged: phishing Toggle Comment Threads | Keyboard Shortcuts

  • Geebo 8:00 am on May 17, 2023 Permalink | Reply
    Tags: , , , , phishing, ,   

    Victim sues banks for failing to prevent $500K loss 

    Victim sues banks for failing to prevent $500K loss

    By Greg Collier

    A 74-year-old woman from Hilton Head, South Carolina, is suing three major financial institutions for allegedly failing to prevent large transactions of hers being used in a months long scam. But before we get to that, please read how scammers tormented this poor woman.

    It started out when she received an email that appeared to come from PayPal. In actuality, it was a phishing email which said her account had been hacked. The email also offered customer service software that could prevent her account from being hacked. The software was actually malware that allowed scammers to take control of her computer.

    This allowed the scammers to access her bank accounts and take thousands of dollars from her. They also convinced her to withdrawal large sums of money and convert it to cryptocurrency to send them. This occurred through most of 2022.

    The victim’s son received a surprise anonymous text where he was warned by scammers that the last of his mother’s money was about to be stolen. It seems even scammers can have a change of heart. The son even received texts about how much information they had on his mother, including logins for close to a dozen of the woman’s online accounts.

    Her son then went out and bought her a new phone with a new number, and it wasn’t long before the scammers started contacting her through the new phone.

    The woman is now suing PayPal, Bank of America, and Wells Fargo for not better protecting consumers. The suit alleges all three corporations “failed to take corrective actions” while the fraud took place, which included large in-person transactions. According to the suit, the large transactions were never questioned.

    What do you think? Are the banks partially responsible for not putting a stop to these transactions? Or is the elderly woman just an unfortunate victim?

    Since this all started with the victim downloading malware from an email, it’s a good time to remind our readers not to click on any suspicious links from emails, even if they’re from a company you do business with regularly. That email may not actually be from that business. Instead, login directly into your account and address any issues from there.

     
  • Geebo 9:00 am on November 22, 2022 Permalink | Reply
    Tags: , , , , phishing, ,   

    Scam Round Up: Black Friday warning and more 

    Scam Round Up: Black Friday warning and more

    By Greg Collier

    This week in the Scam Round Up, we’re bringing you a reminder of an old scam, a new twist on a persistent scam, and a warning about this year’s holiday shopping season.

    ***

    The grandparent scam is still out there and shows no signs of slowing down. It’s becoming almost as common as the arrest warrant scam, which we’ll get to shortly.

    An elderly Florida woman recently lost $16,000 to the grandparent scam. A scammer called her, posing as one of her grandsons, and claimed he needed $50,000 for bail because of a car accident he was in. This scammer hit all the beats, saying he hit a pregnant woman with his car and not to tell anyone else in the family. The victim sent the scammers $16,000, which was all she had in savings. Her family found out when the victim started asking her friends how she could get more money.

    If you have an elderly relative, please let them know about this scam. If you receive a call like this, don’t say the grandchild’s name. This lets scammers know they have a potential victim on the phone. Ask the caller a question that only that person would know, to see if they are who they say they are.

    ***

    As we have said on multiple occasions, the arrest warrant scam is probably the most common scam in America. It’s at least the most reported one. Not a day goes by where we don’t see a report from some police department or sheriff’s office warning their residents of this scam.

    Typically, scammers call their victim posing as police while telling their victims they have an arrest warrant out for them. In most cases, the scammers will say the arrest warrant is for missing jury duty.

    More recently, residents of a Chicago suburb started receiving voice mails stating they had arrest warrants. They were then instructed to call a number that did not belong to their local police department.

    It’s unknown what happens when the fake police phone number is called, but all arrest warrant scams are designed to scare the victim into making some kind of payment that will make the warrant magically go away.

    No law enforcement office or agency will ever call you to demand a payment over the phone. If you receive one of these calls, hang up and call your local police at their non-emergency number.

    ***

    With Black Friday being this week, scammers will be out in droves trying to separate you from your money. This year, the Better Business Bureau is saying that the scammers will be more inclined to pose as a delivery company like UPS or FedEx than posing as a retailer like Amazon or Apple.

    This means scammers will be sending out texts and emails claiming you missed a delivery, or they need additional information to make the delivery. These messages will contain a link for you to click on. If you click on the link, you could be taken to a phony site that looks like the legitimate one from that delivery service. You’ll then be asked to input your personal information. Sometimes, you’ll be asked for your financial information for a redelivery fee, which isn’t a real thing. The phony website could also inject malware into your device, stealing even more information.

    As always, do not click on links in text messages and emails from people you don’t know personally. If you think there’s a problem with your delivery, go to the retailer’s website, and they’ll have the tracking information.

     
  • Geebo 9:00 am on November 17, 2022 Permalink | Reply
    Tags: phishing, , , ,   

    Postal delivery scam back in time for holidays 

    By Greg Collier

    The delivery scam really never went away. It was insanely popular with scammers during the pandemic, when we were supposed to be sheltering at home. Since then, there have been reports of this scam, but nowhere near as many as during the pandemic. However, with the holiday season on the horizon, this scam has started to pick up steam again.

    Since many of us will be expecting packages delivered to our homes for the holidays, scammers are betting on people being paranoid about the delivery itself. Several regions across the US are reporting an increase in scam text messages that claim to be from the United States Postal Service. These messages say you missed a delivery to your home, or it will say that the package address wasn’t clear enough.

    The message contains a link to click on, so you can supposedly reschedule the delivery. In previous instances of this scam, if you click the link, you’d be taken to a website that looks like the USPS website but isn’t. You’d then be asked to enter your financial information because there is a redelivery fee of $3.00. From here, the scammers would use your financial information to steal as much as they can from you before you notice.

    If you receive a text message like this, think about it for a moment. Did you give the post office your phone number? You probably didn’t and there’s no way for them to find it. The days of the White Pages are over. In general, government services are not in the habit of calling or texting their users. In the majority of cases, if there’s a problem with the service, you need to go to them.

    The best way to protect yourself from this scam is to not click on any links in text messages from people you don’t know personally. You can also sign up for the USPS Informed Delivery service, so you can know exactly when a delivery is expected to be delivered to your home.

     
  • Geebo 8:00 am on October 21, 2022 Permalink | Reply
    Tags: , , phishing, , ,   

    Scam Round Up: Why we keep receiving scam messages and more 

    By Greg Collier

    This week on the Round Up, we’re going to discuss two familiar scams in new clothes, and a look into the scam process itself.

    ***

    Our first scam is a good old phishing scam. If you’re not familiar with the term phishing, it’s when scammers send out messages hoping to get personal information from their victims. It’s like the scammers are on a fishing expedition for victims.

    Bank information is a big target for scammers, and the latest scam is going after the banking login information of its victims. In Virginia, it’s being reported that residents there are receiving emails that appear to be coming from their bank with official logos and everything.

    The emails claim that the bank has a new security procedure in place and provides a link for their users to log in. The link will actually take the victim to a page that looks like the bank’s official login page, but will instead steal the user’s login information.

    Never click on any links in an email or text message from someone you don’t know personally. And always check the URL of any page you’re on to make sure it’s legitimate before logging in.

    ***

    There’s a new scam circulating on social media where a victim can be promised as much as $1 million. This scam happens when you receive a direct message from a friend who says they saw your name on a list of people who are owed unclaimed workers’ compensation. Except, the friend is actually a scammer who has hijacked your friend’s account. The scammer then tells you to call an ‘agent’ at a certain phone number who can help you. If someone calls the number, not only will they be asked for their personal information, but they’ll be told there will be a payment for the process. This is very similar to the government grant scam, where victims are promised free money. This also known as the advance fee scam. When it comes to things like grants and compensation, you should never have to pay money to get money.

    ***

    Lastly, have you ever wondered why you might be receiving scam messages even though you’re careful with your contact information? For example, you may not give your phone number or email address to too many people outside of those in your inner circle. Yet, you still get scam texts, calls, and emails. So, how does that happen?

    Scammers always cast a wide net in order to lure in a handful of victims. They cast the widest net by sending their messages at random to any combination of email addresses and phone numbers. If a scammer gets a reply from any one of these millions of guesses, they know there’s a real person at that email address or phone number.

     
  • Geebo 8:00 am on June 23, 2022 Permalink | Reply
    Tags: , , , phishing, , ,   

    Marketplace scam could send angry strangers to your home 

    Marketplace scam could send angry strangers to your home

    By Greg Collier

    Typically, when we discuss scams carried out through Facebook Marketplace, they’re the ones that plague a lot of online marketplace platforms. Of course, there’s the fake check/overpayment scam. Lately, the Google Voice verification scam has been popular on Marketplace. There have also been a number of rental scams, just to name a few. Now, a new scam has been reported that could have unintended consequences for all victims involved.

    According to a report out of Tulsa, Oklahoma, scammers are hijacking the Facebook accounts of their victims through phishing attacks. The report states specifically that the scammers are posing as old friends that you may not have heard from in a while. However, the scammers use the hijacked accounts to place items for sale on Marketplace that didn’t actually exist. While some of the items have been mundane, like furniture, other listings have been advertising purebred puppies.

    As we have seen with previous puppy scams, scammers will often list a fake address to make their scam seem more legitimate. This has led to victims showing up to homes where they think they’re about to get a puppy, only to be turned away in disappointment. While some victims understood the situation, others have become angry at the people living at the address listed, thinking that the residents are part of the scam.

    If scammers are collecting money through apps like Venmo, Cash App, or Zelle, they could be sending their victims to the address of a person with a hijacked Facebook account. This scam could potentially lead to a violent encounter.

    The best way to protect yourself is to keep your Facebook account secure. Consider making your account private to your friends and family only. Use a password that can’t be guessed easily. For that, you can use a password generator service. Even most modern web browsers have a password manager built in. Lastly, you should enable two-factor authentication on your Facebook account. This means there would be a two-step process into signing in to your Facebook account.

    While none of these methods are foolproof, they do go a long way in keeping your digital life secure.

    Video: Stolen Facebook account posts fake ads, sends strangers to woman’s doorstep

     
  • Geebo 8:00 am on May 20, 2022 Permalink | Reply
    Tags: , , phishing, , , ,   

    Scam Round Up: Store robbed over the phone and more 

    By Greg Collier

    To end the workweek, we’re bringing you a few scams that either have a new twist to them, or have appeared in a new area.

    ***

    A new utility scam has shown up in the Huntsville, Alabama area. Typically, scammers will attempt the shut-off scam, where they threaten victims with shutting off their power if they don’t pay immediately. Now, scammers are trying a different tack. They’re sending phishing emails to victims that say the victim has paid their power bill twice and the victim now has a credit. For the victim to get the credit back, they just need to click the link in the email. The link then takes the victim to a malicious website that asks for their personal and financial information. Remember, most utility companies only communicate by postal mail. If you think there may be a discrepancy in your bill, call the customer service number on your bill instead of any number on the email.

    ***

    We frequently discuss the online puppy scam. This is where victims think they’re buying a puppy from a breeder’s website, but the website is fake and the puppy never existed. Another victim in those scams are the legitimate breeders, as the pictures from their website are often stolen to be used on the fake website. This recently happened to a breeder of Australian Labradoodles in Texas. Unfortunately, there’s not a lot breeders can do about this. However, there are tips you can use to avoid being taken in a puppy scam provided by the breeder. For many purebred dogs from a legitimate breeder, you should expect a wait period. She says that it could be six to 12 months. Avoid breeders who ask for payment in non-traditional ways, such as payment apps like Venmo and Zelle. But as always, we recommend using a licensed breeder within driving distance or adopting from your local shelter.

    ***

    Lastly, we have a scam that happened in Kingsport, Tennessee that retail employees may be interested in. A convenience store employee received a phone call on a Saturday morning. The caller claimed to be from corporate headquarters and asked the employee to take the cash in the register to a Bitcoin ATM. The caller even sent an Uber to pick up the employee to take them to the Bitcoin ATM. The store ended up losing $4500. Often, employees like this have no management on site to ask whether this is a scam or not. If you’re in a supervisory or management position at a retail vendor, you may want to have a talk with your employees about scams like this, or make yourself more available in case of a call like this. Let your employees know that a corporation would never direct them to send money through Bitcoin.

    ***

     
  • Geebo 8:00 am on May 10, 2022 Permalink | Reply
    Tags: , , phishing, , ,   

    Homebuyer loses $155K in email scam 

    Homebuyer loses $155K in email scam

    By Greg Collier

    A woman in the state of Georgia was getting ready to close on a new home when she received an email from her lawyer. She was given instructions to wire transfer the $155,000 for the closing costs. However, the money did not go to the attorney. Instead, it went to the bank account of a local scammer who was recently arrested on felony theft charges.

    So, how was the scammer able to fool the victim? This scam is known as the business email compromise scam, or BEC for short. In this scam, the scammers hijack compromised email accounts of real estate attorneys, title companies, or banks. This way, the scammers can monitor the emails for people who are getting ready to close on their homes. Then, the scammers either use the hijacked email address or a spoofed address to give fraudulent instructions to the homebuyer to wire the money to the scammers. Meanwhile, the victims think they just closed on a new home.

    According to the FBI and other law enforcement agencies, this scam is becoming more common. This scam is so profitable, the scammers only need one victim to fall for the scam to make a ton of money.

    While you may not be in the market for a home right now, you may be in the future. So, it’s best to have this knowledge now instead of finding out before it’s too late. When the time comes to buy a home, the best way to protect yourself is to verify everything by phone. If you get an email from someone involved in the process asking you to make a substantial payment, call them to verify the request. It might be even better to visit the sender in person to verify any requests. No one wants to go through the stressful process of buying a new home only to have their dreams of a new home dashed by losing money to a scammer.

     
  • Geebo 8:00 am on April 19, 2022 Permalink | Reply
    Tags: phishing, , , , , ,   

    Scam Round Up: 3 phone scams worth noting 

    Scam Round Up: 3 phone scams worth noting

    By Greg Collier

    This week in the Scam Round Up, we’re discussing three scams related to phones that have been in the news a lot recently.

    ***

    Our first scam has been affecting both T-Mobile and Verizon customers. Users of both services have reported receiving text messages offering them a free gift. The text messages say, “Your bill is paid for March. Thanks, here’s a little gift for you.” The text message also contains a link for customers to click on to get their free gift. These messages are not coming from the phone providers, but instead are coming from scammers. If a customer clicks the link, they’ll be taken to a page where they’ll be asked for their personal information under the guise of verifying their identity. Or, they’ll be asked for payment to cover the cost of shipping the supposed free gift. Of course, there is no free gift to be had. If you receive a text message like this, it’s best just to ignore and delete it.

    ***

    The next phone scam is one of those scams that would be ingenious if it wasn’t so harmful. In this scam, scammers are calling their victims and asking them one question, “Can you hear me now?” The scammers are hoping that the victim gives them a ‘Yes’ response, so the scammers can get a voice recording of the victim. This is so the scammers can use the victim’s recorded voice as a voice authorization for any number of reasons. Such voice authorizations can be used to make purchases or access a victim’s bank account in some situations. If someone you don’t know calls you and starts asking you questions, it’s advised that you do not respond. Another way to protect yourself from this scam is to use the ‘if it’s important enough, they’ll leave a voice mail’ method.

    ***

    Our last scam has been problematic for us to post about since it involves some adult themes. In this scam, victims receive a text message that comes attached with a picture of a young woman. The text messages say something along the lines of “I was hoping we could repeat last night” or “I haven’t heard back from you, did I do something wrong?”. Many people have responded to the texts, telling the sender they have the wrong number. This lets the scammer know that the victim’s number is a legitimate phone number. In some cases, the scammers have sent explicit images trying to instigate a romance scam. In other cases, victim’s have been lured to dating sites where they’re asked to pay money. Much like the previous two scams, you should not respond to the scammers. If you do, it lets them know that someone is at that number and can be targeted for other scams in the future.

    ***

    Since most of us carry are phones with us everywhere we go, scammers can technically target someone at any time of the day, no matter where they are. Hopefully, we’ve given you the knowledge to protect yourself against such scams.

     
  • Geebo 8:00 am on March 29, 2022 Permalink | Reply
    Tags: , , , phishing,   

    Antivirus scam costs victim $19,000 

    Antivirus scam costs victim $19,000

    By Greg Collier

    If you’re a computer user who’s been using the internet since the dial-up days, you may still be using antivirus software. Even older users who may have just gotten on the internet probably use antivirus software as well. If you’re in one of these demographics, you may have it ingrained into your internet habits to have robust protection against computer viruses. Most users will opt for the free package many antivirus companies offer. Others will want that extra protection and pay for an antivirus subscription. It’s the latter group that scammers are hoping to catch unaware.

    An Indiana woman recently fell victim to an antivirus scam. She says that a notification appeared on her computer that said she had been charged $500 for Norton Antivirus. The victim had not used Norton in a while, but felt the service may have been one of her bills that are on auto-payment. The notification she received also included a phone number to call in case of any questions.

    The victim called the number and was told the problem could be corrected if the customer service representative could have remote access to her computer. The victim entered an access code on her computer, and the rep then had access. The rep then claimed that they had made a mistake and the victim now owed them $12,000. To rectify the matter, the victim was instructed to withdraw $12,000 from her bank and transfer it to Bitcoin using a Bitcoin ATM at a local gas station.

    If you’re a regular reader, you already know where this is going. The notification and call center were both run by scammers. Not only did the scammers get the $12,000 in Bitcoin, but they also took an additional $7,000 directly from the victim’s bank account.

    If you receive an email, text, or any kind of message from some company that claims you owe them money, do not call the phone number included. Instead, go to the company’s official website, and use the phone number from there. Furthermore, most legitimate companies do not ask for any kind of payment in Bitcoin or other cryptocurrencies. While Bitcoin is easy to track, it’s nearly impossible to recover once it’s given to scammers. And please keep in mind, you shouldn’t give remote access to your device to any stranger. Lastly, no real company will ask you to withdraw money from your account if they made a mistake. Any decent company worth their salt can correct the matter on their end without any need for bank access.

     
  • Geebo 8:00 am on March 21, 2022 Permalink | Reply
    Tags: , phishing,   

    New Instagram scam hijacks your account 

    New Instagram scam hijacks your account

    By Greg Collier

    We wouldn’t say Instagram is rife with scammers, but it’s definitely fertile ground for them. Most often, Instagram scams involve accounts that claim to be selling a product you’ll never receive. There are also accounts that attempt to lure victims in with some get-rich-quick scheme, typically involving cryptocurrency. Even on Geebo.com’s Instagram account, we receive comments from spam accounts asking to promote our posts on these spam accounts. However, today, we’re going to discuss a scam that not only compromises your Instagram account, but could take it over too.

    Essentially, it’s a phishing scam. Phishing is a type of hack where an attacker sends a fraudulent message designed to trick a person into revealing personal information. In this case, scammers are sending out emails that appear to have come directly from Instagram. The email states that the Instagram account in question has violated copyright law and will be deleted in 24 hours if the user doesn’t act. The email also contains a link for users to click if they want to dispute the claim.

    Of course, anybody who is active on Instagram is going to click the link to attempt to protect their account. Once the link is clicked, the user will be asked to input their Instagram login information for verification. Then, the user will be directed to Instagram.com, making the scam seem almost legitimate. Scammers do this to obtain accounts, so they can have more accounts to help spread other scams. It doesn’t matter whether you have 2 million followers or just two. Scammers will attempt to hijack any active account they can to lend legitimacy to their other scams.

    To protect yourself from a scam like this, you should know how Instagram actually handles copyright claims. They do not delete entire accounts for a single infraction. Instead, if an author of a work claims you violated their copyright, Instagram will remove the post from your account and send you a message saying so. Another way to protect yourself is by inspecting the email itself. While it may look as if it came from Instagram, scammers are hoping you won’t look at the email address it came from. Often, phishing emails are sent from free email services like Gmail and Yahoo. You can also check any links sent in the email by hovering your cursor over the link. This should show you where the link will actually take you.

     
c
Compose new post
j
Next post/Next comment
k
Previous post/Previous comment
r
Reply
e
Edit
o
Show/Hide comments
t
Go to top
l
Go to login
h
Show/Hide help
shift + esc
Cancel