Tagged: phishing Toggle Comment Threads | Keyboard Shortcuts

  • Geebo 8:00 am on October 21, 2022 Permalink | Reply
    Tags: , , phishing, , ,   

    Scam Round Up: Why we keep receiving scam messages and more 

    By Greg Collier

    This week on the Round Up, we’re going to discuss two familiar scams in new clothes, and a look into the scam process itself.

    ***

    Our first scam is a good old phishing scam. If you’re not familiar with the term phishing, it’s when scammers send out messages hoping to get personal information from their victims. It’s like the scammers are on a fishing expedition for victims.

    Bank information is a big target for scammers, and the latest scam is going after the banking login information of its victims. In Virginia, it’s being reported that residents there are receiving emails that appear to be coming from their bank with official logos and everything.

    The emails claim that the bank has a new security procedure in place and provides a link for their users to log in. The link will actually take the victim to a page that looks like the bank’s official login page, but will instead steal the user’s login information.

    Never click on any links in an email or text message from someone you don’t know personally. And always check the URL of any page you’re on to make sure it’s legitimate before logging in.

    ***

    There’s a new scam circulating on social media where a victim can be promised as much as $1 million. This scam happens when you receive a direct message from a friend who says they saw your name on a list of people who are owed unclaimed workers’ compensation. Except, the friend is actually a scammer who has hijacked your friend’s account. The scammer then tells you to call an ‘agent’ at a certain phone number who can help you. If someone calls the number, not only will they be asked for their personal information, but they’ll be told there will be a payment for the process. This is very similar to the government grant scam, where victims are promised free money. This also known as the advance fee scam. When it comes to things like grants and compensation, you should never have to pay money to get money.

    ***

    Lastly, have you ever wondered why you might be receiving scam messages even though you’re careful with your contact information? For example, you may not give your phone number or email address to too many people outside of those in your inner circle. Yet, you still get scam texts, calls, and emails. So, how does that happen?

    Scammers always cast a wide net in order to lure in a handful of victims. They cast the widest net by sending their messages at random to any combination of email addresses and phone numbers. If a scammer gets a reply from any one of these millions of guesses, they know there’s a real person at that email address or phone number.

     
  • Geebo 8:00 am on June 23, 2022 Permalink | Reply
    Tags: , , , phishing, , ,   

    Marketplace scam could send angry strangers to your home 

    Marketplace scam could send angry strangers to your home

    By Greg Collier

    Typically, when we discuss scams carried out through Facebook Marketplace, they’re the ones that plague a lot of online marketplace platforms. Of course, there’s the fake check/overpayment scam. Lately, the Google Voice verification scam has been popular on Marketplace. There have also been a number of rental scams, just to name a few. Now, a new scam has been reported that could have unintended consequences for all victims involved.

    According to a report out of Tulsa, Oklahoma, scammers are hijacking the Facebook accounts of their victims through phishing attacks. The report states specifically that the scammers are posing as old friends that you may not have heard from in a while. However, the scammers use the hijacked accounts to place items for sale on Marketplace that didn’t actually exist. While some of the items have been mundane, like furniture, other listings have been advertising purebred puppies.

    As we have seen with previous puppy scams, scammers will often list a fake address to make their scam seem more legitimate. This has led to victims showing up to homes where they think they’re about to get a puppy, only to be turned away in disappointment. While some victims understood the situation, others have become angry at the people living at the address listed, thinking that the residents are part of the scam.

    If scammers are collecting money through apps like Venmo, Cash App, or Zelle, they could be sending their victims to the address of a person with a hijacked Facebook account. This scam could potentially lead to a violent encounter.

    The best way to protect yourself is to keep your Facebook account secure. Consider making your account private to your friends and family only. Use a password that can’t be guessed easily. For that, you can use a password generator service. Even most modern web browsers have a password manager built in. Lastly, you should enable two-factor authentication on your Facebook account. This means there would be a two-step process into signing in to your Facebook account.

    While none of these methods are foolproof, they do go a long way in keeping your digital life secure.

    Video: Stolen Facebook account posts fake ads, sends strangers to woman’s doorstep

     
  • Geebo 8:00 am on May 20, 2022 Permalink | Reply
    Tags: , , phishing, , , ,   

    Scam Round Up: Store robbed over the phone and more 

    By Greg Collier

    To end the workweek, we’re bringing you a few scams that either have a new twist to them, or have appeared in a new area.

    ***

    A new utility scam has shown up in the Huntsville, Alabama area. Typically, scammers will attempt the shut-off scam, where they threaten victims with shutting off their power if they don’t pay immediately. Now, scammers are trying a different tack. They’re sending phishing emails to victims that say the victim has paid their power bill twice and the victim now has a credit. For the victim to get the credit back, they just need to click the link in the email. The link then takes the victim to a malicious website that asks for their personal and financial information. Remember, most utility companies only communicate by postal mail. If you think there may be a discrepancy in your bill, call the customer service number on your bill instead of any number on the email.

    ***

    We frequently discuss the online puppy scam. This is where victims think they’re buying a puppy from a breeder’s website, but the website is fake and the puppy never existed. Another victim in those scams are the legitimate breeders, as the pictures from their website are often stolen to be used on the fake website. This recently happened to a breeder of Australian Labradoodles in Texas. Unfortunately, there’s not a lot breeders can do about this. However, there are tips you can use to avoid being taken in a puppy scam provided by the breeder. For many purebred dogs from a legitimate breeder, you should expect a wait period. She says that it could be six to 12 months. Avoid breeders who ask for payment in non-traditional ways, such as payment apps like Venmo and Zelle. But as always, we recommend using a licensed breeder within driving distance or adopting from your local shelter.

    ***

    Lastly, we have a scam that happened in Kingsport, Tennessee that retail employees may be interested in. A convenience store employee received a phone call on a Saturday morning. The caller claimed to be from corporate headquarters and asked the employee to take the cash in the register to a Bitcoin ATM. The caller even sent an Uber to pick up the employee to take them to the Bitcoin ATM. The store ended up losing $4500. Often, employees like this have no management on site to ask whether this is a scam or not. If you’re in a supervisory or management position at a retail vendor, you may want to have a talk with your employees about scams like this, or make yourself more available in case of a call like this. Let your employees know that a corporation would never direct them to send money through Bitcoin.

    ***

     
  • Geebo 8:00 am on May 10, 2022 Permalink | Reply
    Tags: , , phishing, , ,   

    Homebuyer loses $155K in email scam 

    Homebuyer loses $155K in email scam

    By Greg Collier

    A woman in the state of Georgia was getting ready to close on a new home when she received an email from her lawyer. She was given instructions to wire transfer the $155,000 for the closing costs. However, the money did not go to the attorney. Instead, it went to the bank account of a local scammer who was recently arrested on felony theft charges.

    So, how was the scammer able to fool the victim? This scam is known as the business email compromise scam, or BEC for short. In this scam, the scammers hijack compromised email accounts of real estate attorneys, title companies, or banks. This way, the scammers can monitor the emails for people who are getting ready to close on their homes. Then, the scammers either use the hijacked email address or a spoofed address to give fraudulent instructions to the homebuyer to wire the money to the scammers. Meanwhile, the victims think they just closed on a new home.

    According to the FBI and other law enforcement agencies, this scam is becoming more common. This scam is so profitable, the scammers only need one victim to fall for the scam to make a ton of money.

    While you may not be in the market for a home right now, you may be in the future. So, it’s best to have this knowledge now instead of finding out before it’s too late. When the time comes to buy a home, the best way to protect yourself is to verify everything by phone. If you get an email from someone involved in the process asking you to make a substantial payment, call them to verify the request. It might be even better to visit the sender in person to verify any requests. No one wants to go through the stressful process of buying a new home only to have their dreams of a new home dashed by losing money to a scammer.

     
  • Geebo 8:00 am on April 19, 2022 Permalink | Reply
    Tags: phishing, , , , , ,   

    Scam Round Up: 3 phone scams worth noting 

    Scam Round Up: 3 phone scams worth noting

    By Greg Collier

    This week in the Scam Round Up, we’re discussing three scams related to phones that have been in the news a lot recently.

    ***

    Our first scam has been affecting both T-Mobile and Verizon customers. Users of both services have reported receiving text messages offering them a free gift. The text messages say, “Your bill is paid for March. Thanks, here’s a little gift for you.” The text message also contains a link for customers to click on to get their free gift. These messages are not coming from the phone providers, but instead are coming from scammers. If a customer clicks the link, they’ll be taken to a page where they’ll be asked for their personal information under the guise of verifying their identity. Or, they’ll be asked for payment to cover the cost of shipping the supposed free gift. Of course, there is no free gift to be had. If you receive a text message like this, it’s best just to ignore and delete it.

    ***

    The next phone scam is one of those scams that would be ingenious if it wasn’t so harmful. In this scam, scammers are calling their victims and asking them one question, “Can you hear me now?” The scammers are hoping that the victim gives them a ‘Yes’ response, so the scammers can get a voice recording of the victim. This is so the scammers can use the victim’s recorded voice as a voice authorization for any number of reasons. Such voice authorizations can be used to make purchases or access a victim’s bank account in some situations. If someone you don’t know calls you and starts asking you questions, it’s advised that you do not respond. Another way to protect yourself from this scam is to use the ‘if it’s important enough, they’ll leave a voice mail’ method.

    ***

    Our last scam has been problematic for us to post about since it involves some adult themes. In this scam, victims receive a text message that comes attached with a picture of a young woman. The text messages say something along the lines of “I was hoping we could repeat last night” or “I haven’t heard back from you, did I do something wrong?”. Many people have responded to the texts, telling the sender they have the wrong number. This lets the scammer know that the victim’s number is a legitimate phone number. In some cases, the scammers have sent explicit images trying to instigate a romance scam. In other cases, victim’s have been lured to dating sites where they’re asked to pay money. Much like the previous two scams, you should not respond to the scammers. If you do, it lets them know that someone is at that number and can be targeted for other scams in the future.

    ***

    Since most of us carry are phones with us everywhere we go, scammers can technically target someone at any time of the day, no matter where they are. Hopefully, we’ve given you the knowledge to protect yourself against such scams.

     
  • Geebo 8:00 am on March 29, 2022 Permalink | Reply
    Tags: , , , phishing,   

    Antivirus scam costs victim $19,000 

    Antivirus scam costs victim $19,000

    By Greg Collier

    If you’re a computer user who’s been using the internet since the dial-up days, you may still be using antivirus software. Even older users who may have just gotten on the internet probably use antivirus software as well. If you’re in one of these demographics, you may have it ingrained into your internet habits to have robust protection against computer viruses. Most users will opt for the free package many antivirus companies offer. Others will want that extra protection and pay for an antivirus subscription. It’s the latter group that scammers are hoping to catch unaware.

    An Indiana woman recently fell victim to an antivirus scam. She says that a notification appeared on her computer that said she had been charged $500 for Norton Antivirus. The victim had not used Norton in a while, but felt the service may have been one of her bills that are on auto-payment. The notification she received also included a phone number to call in case of any questions.

    The victim called the number and was told the problem could be corrected if the customer service representative could have remote access to her computer. The victim entered an access code on her computer, and the rep then had access. The rep then claimed that they had made a mistake and the victim now owed them $12,000. To rectify the matter, the victim was instructed to withdraw $12,000 from her bank and transfer it to Bitcoin using a Bitcoin ATM at a local gas station.

    If you’re a regular reader, you already know where this is going. The notification and call center were both run by scammers. Not only did the scammers get the $12,000 in Bitcoin, but they also took an additional $7,000 directly from the victim’s bank account.

    If you receive an email, text, or any kind of message from some company that claims you owe them money, do not call the phone number included. Instead, go to the company’s official website, and use the phone number from there. Furthermore, most legitimate companies do not ask for any kind of payment in Bitcoin or other cryptocurrencies. While Bitcoin is easy to track, it’s nearly impossible to recover once it’s given to scammers. And please keep in mind, you shouldn’t give remote access to your device to any stranger. Lastly, no real company will ask you to withdraw money from your account if they made a mistake. Any decent company worth their salt can correct the matter on their end without any need for bank access.

     
  • Geebo 8:00 am on March 21, 2022 Permalink | Reply
    Tags: , phishing,   

    New Instagram scam hijacks your account 

    New Instagram scam hijacks your account

    By Greg Collier

    We wouldn’t say Instagram is rife with scammers, but it’s definitely fertile ground for them. Most often, Instagram scams involve accounts that claim to be selling a product you’ll never receive. There are also accounts that attempt to lure victims in with some get-rich-quick scheme, typically involving cryptocurrency. Even on Geebo.com’s Instagram account, we receive comments from spam accounts asking to promote our posts on these spam accounts. However, today, we’re going to discuss a scam that not only compromises your Instagram account, but could take it over too.

    Essentially, it’s a phishing scam. Phishing is a type of hack where an attacker sends a fraudulent message designed to trick a person into revealing personal information. In this case, scammers are sending out emails that appear to have come directly from Instagram. The email states that the Instagram account in question has violated copyright law and will be deleted in 24 hours if the user doesn’t act. The email also contains a link for users to click if they want to dispute the claim.

    Of course, anybody who is active on Instagram is going to click the link to attempt to protect their account. Once the link is clicked, the user will be asked to input their Instagram login information for verification. Then, the user will be directed to Instagram.com, making the scam seem almost legitimate. Scammers do this to obtain accounts, so they can have more accounts to help spread other scams. It doesn’t matter whether you have 2 million followers or just two. Scammers will attempt to hijack any active account they can to lend legitimacy to their other scams.

    To protect yourself from a scam like this, you should know how Instagram actually handles copyright claims. They do not delete entire accounts for a single infraction. Instead, if an author of a work claims you violated their copyright, Instagram will remove the post from your account and send you a message saying so. Another way to protect yourself is by inspecting the email itself. While it may look as if it came from Instagram, scammers are hoping you won’t look at the email address it came from. Often, phishing emails are sent from free email services like Gmail and Yahoo. You can also check any links sent in the email by hovering your cursor over the link. This should show you where the link will actually take you.

     
  • Geebo 9:00 am on December 24, 2021 Permalink | Reply
    Tags: , , buskers, , phishing, , , violin scam,   

    Scam Round Up: The violin scam and more 

    By Greg Collier

    As we move into the holiday weekend, here are three more scams that you should be aware of.

    ***

    Most of us have seen street musicians known as buskers. They’re performing out on the street with a hat or an open guitar case, where people can leave tips if they enjoy the performance. I’m sure you’re wondering what could be scammy about that? It seems that there are several people from around the country have been using busking to trick people into giving them money. They appear to be playing a violin that’s hooked up to an amplifier, along with a sign that says they need money for food or rent. Here is one such episode from the state of New York. The phony violin players are actually pretending to play the violin, while the actual music comes from a recording. Some of these phony buskers will even list their Venmo or Cash App accounts, so you can donate to them electronically. If you see one of these fake musicians, you should just avoid them and not give them money.

    ***

    It seems the brushing scam has also picked up during the holiday season. This is where someone will receive items from a site like Amazon that they didn’t order. In most brushing cases. This is done so the seller of the item can post a positive review of the product using the victim’s name as a verified purchase. While you can keep anything you receive as part of a brushing scam, the goods are usually not worth keeping. In some instances, like this one, the Amazon account of the recipient has been compromised and is being charged for the items they receive. If you start receiving items you didn’t order, check your Amazon account for fraudulent activity and change your password.

    ***

    Lastly, residents in the state of Wisconsin have been receiving text messages claiming to be from the state’s DMV. The texts are requesting that residents follow a link to confirm personal information. However, the texts are also threatening residents with a suspension of their license if they don’t comply. No state is going to threaten their residents with suspension of their driver’s license for not following a text link. Not only that, but identity thieves can do a lot with your driver’s license number if they already have some of your other personal information. It’s almost as valuable as your Social Security number.

    ***

    Thank you for reading, and here’s hoping our readers have a safe and happy holiday.

     
  • Geebo 9:00 am on December 22, 2021 Permalink | Reply
    Tags: , , phishing, , , ,   

    Delivery scam more common during holidays 

    By Greg Collier

    If you’ve ordered any last-minute Christmas gifts online, you’re probably checking your phone or laptop for delivery updates. After all, we all want to be able to give everyone the gifts they want on Christmas Day. However, the holiday season is fraught with its own sets of pressure and confusion, and scammers are looking to take advantage of that by preying on your anxiety of a potentially missed package delivery.

    The delivery text message scam is not a new one, but like many scams, its activity increases during the holidays. This scam starts out when you receive a text message that claims to be from either Amazon or any number of delivery services, including the US Postal Service. The text message says that the scheduled delivery for your package has changed. The text message also includes a link that it wants you to link for confirmation of the new delivery schedule.

    Links in text messages from people you don’t know are almost always bad news. In the past, these links have led to phony websites that look like Amazon but aren’t. You’d be asked for your Amazon login information before being asked to fill out a survey for a free gift. You’ll then be asked for your payment information to pay for the shipping of the supposed gift. What really just happened is that you’ve willingly given your information to identity thieves who now have access to your Amazon account. These links can also inject malware or ransomware into your device.

    So, how do the scammers know that you’re waiting for a delivery? They don’t. They’re texting random people by the boatload, hoping to get just a few people to fall into their trap.

    Please keep in mind that delivery services will not text you out of the blue unless you’ve signed up for their texting service. The links in the phony texts are often from a web address that has nothing to do with the company they’re pretending to be from.

     
  • Geebo 9:00 am on November 9, 2021 Permalink | Reply
    Tags: , , , phishing, pinhole camera, , , , ,   

    Scam Round Up: New sweepstakes scam and more 

    By Greg Collier

    Today we’re our readers three more scams that are happening around the country that could be coming to your area.

    ***

    In Raleigh, North Carolina, people are reporting being called by scammers posing as Publisher’s Clearing House telling them that they’re winners in the famous sweepstakes. PCH’s name has been used in scams for a number of years. What’s different this time is the scammers are leaving voicemail messages that say, “This is a legitimate call notifying you that you have won.” That’s the equivalent of leaving a message that says, “We’re totally not scammers, we promise.” If you were to call the number provided, you would more than likely be lured into an advance fee scam, where the scammers would get you to pay a phony tax or processing fee on your winnings. That’s illegal in the US, and why all legitimate sweepstakes say that no purchase is necessary.

    ***

    It was brought to the attention of police in Fairfield, California, that an ATM had a small camera known as a pinhole camera attached to it. The camera was attached to what was supposed to be a rearview security mirror. The camera is used in an operation known as skimming. Skimmers are usually attached to the card reader to get the information from your debit card’s magnetic strip. However, the camera helps the scammers get your card number and PIN. Devices like this are normally attached to freestanding ATMs like the ones in convenience stores and gas stations. However, bank ATMs are not immune to these devices.

    ***

    Recently, the state of Pennsylvania has issued a warning to its residents about text messages related to unemployment benefits. Some residents of the Keystone State have received text messages saying that their unemployment benefit debit card has been frozen. The text contains a link to supposedly verify the recipient’s identity and card status. Clicking such a link could lead to identity theft or having malware infect your device. The state has said that they never send out text messages with embedded links.

    ***

    While these scams may not be happening in your area right now, doesn’t mean that they couldn’t. But now you have the knowledge to protect you if they do.

     
c
Compose new post
j
Next post/Next comment
k
Previous post/Previous comment
r
Reply
e
Edit
o
Show/Hide comments
t
Go to top
l
Go to login
h
Show/Hide help
shift + esc
Cancel