Tagged: smishing Toggle Comment Threads | Keyboard Shortcuts

  • Geebo 8:00 am on September 30, 2025 Permalink | Reply
    Tags: , , , smishing,   

    Tax Refund Text Scam Spreads Nationwide 

    Tax Refund Text Scam Spreads Nationwide

    By Greg Collier

    What began as a problem in just two states has since spread more widely, as residents across the country continue to report fraudulent text messages designed to steal financial information. State tax agencies are issuing alerts warning that these scams are evolving in both scale and sophistication, now targeting households in New York, Pennsylvania, Minnesota, Connecticut, Michigan, New Jersey, and beyond.

    The messages often claim to come from state revenue departments and tell recipients that their refund request has been processed and approved. They then urge taxpayers to provide banking details, with some versions threatening permanent forfeiture of a refund if payment information is not submitted. Officials stress that legitimate state agencies do not request sensitive personal or financial information through unsolicited texts, emails, or phone calls.

    These fraudulent messages are structured to mimic the formal language of government communication. Some include references to tax statutes or deadlines, while others attempt to create urgency with warnings about penalties. Scammers rely on this sense of pressure to convince recipients to click links that lead to spoofed websites or to respond directly with private information. In some cases, even a simple reply can help scammers bypass basic security safeguards on some mobile devices.

    Cybersecurity experts point out that these campaigns have shifted from their earlier focus on banks and retailers to government institutions. By impersonating state tax departments, attackers exploit the authority of trusted institutions. The result is a scam that is more difficult for many taxpayers to dismiss outright.

    Tax agencies across multiple regions are advising residents to exercise caution. Suspicious messages should not be clicked or answered. Verification should be sought only through official state channels, such as tax department websites or phone lines. The broader pattern of these scams reflects the adaptability of cybercriminals and the need for continued public awareness, particularly during tax season when individuals are more likely to be anticipating legitimate communication from government offices.

     

  • Geebo 8:00 am on September 19, 2025 Permalink | Reply
    Tags: , , , , smishing   

    Lottery Winner Texts Are a Scam 

    By Greg Collier

    A new wave of fraudulent text messages has been reported in North Carolina and across the country, with scammers posing as generous lottery winners offering to share their supposed jackpot fortunes. The Federal Trade Commission warns that these messages are not legitimate and advises consumers to exercise caution when receiving such unexpected communications.

    One example circulating now claims that the recipient has been chosen at random to receive one million dollars in cash and a new car. The message explains that the selection was made by an automated system and provides a number to contact a so-called managing director with a special claimant code. When reporters attempted to follow the instructions, the call could not be completed, but the text line produced a swift response. Soon after, the sender requested detailed personal information, including name, address, marital status, occupation, age, income, and even a photograph.

    To test the claim further, reporters tried to initiate a video call, but the call went unanswered. Instead, another message arrived from a foreign number containing a picture of a duffel bag stuffed with cash. The elaborate performance only underscored the deceptive intent.

    According to the Better Business Bureau, the very nature of unsolicited text messages promising money is an immediate red flag. Experts emphasize that responding only confirms to scammers that a real person is at the other end, which encourages them to continue targeting the victim. The goal is almost always to obtain enough personal information to commit identity fraud or to manipulate the target into paying money under false pretenses.

    The Federal Trade Commission stresses the importance of deleting and reporting these texts rather than engaging. Responding can expose recipients to identity theft or malware, especially if links are clicked. Scammers are adept at creating a sense of urgency and legitimacy, but regulators urge people to verify any extraordinary claim through trusted channels rather than through the contact information provided in suspicious messages.

    This type of fraud is not rare. The FTC estimates that Americans lose tens of millions of dollars every year to prize and sweepstakes scams, with older adults among the most frequent targets. The tactics vary, but the pitch is nearly always the same. A promise of sudden wealth, accompanied by requests for personal details or money. A critical fact to keep in mind is that legitimate lottery organizations do not notify winners by text message or through social media, and they do not ask for photographs, income details, or banking information in order to release winnings.

    For anyone who has already replied to one of these messages, experts recommend taking immediate steps to protect personal security. This can include contacting your mobile carrier to block further messages, checking your credit report for unusual activity, and notifying your bank if financial details were shared. It may also be wise to change passwords associated with accounts that could be linked to the information provided. Even if no money was lost, reporting the interaction to the FTC and the BBB helps create a clearer picture of the scam’s reach and may prevent others from becoming victims.

    While these scams are persistent, their effectiveness lies in exploiting the universal hope of financial relief and good fortune. By mimicking the thrill of winning, criminals draw people into sharing information or parting with money. Recognizing the warning signs and taking quick protective measures can turn a potential loss into an important lesson. The safest response remains simple. Treat unexpected lottery offers not as opportunities, but as clear warnings to protect yourself and your information.

     

  • Geebo 8:00 am on September 17, 2025 Permalink | Reply
    Tags: , , , smishing,   

    States Warn of Tax Refund Text Scams 

    States Warn of Tax Refund Text Scams

    By Greg Collier

    State tax agencies are once again warning residents to be cautious about fraudulent text messages designed to steal personal and financial information. Following reports of fake texts in New Jersey earlier this year, the Michigan Department of Treasury has now issued its own alert after receiving complaints of similar activity.

    In New Jersey, scammers have been sending messages that claim to come from the Department of the Treasury’s Division of Taxation. The texts state that a refund request has been processed and approved but warn that if payment details are not submitted by a specified deadline, the refund will be permanently forfeited under the New Jersey Gross Income Tax Act. The Division of Taxation has confirmed that these messages are not legitimate and has explained that text communication is used only in limited circumstances when requested through its phone system. Officials emphasize that residents should avoid clicking links or replying to such texts, since doing so can lead to spoofed websites that mimic official branding and request sensitive financial details. Replying with a single character such as “Y” can also be an attempt by scammers to bypass cell phone security safeguards.

    The Michigan Department of Treasury has reported nearly identical tactics. Residents have received texts that falsely claim to be from the agency, with messages urging them to update payment information or risk forfeiting their refunds. The Treasury has made clear that it never sends unsolicited text messages to request sensitive information and that official correspondence with taxpayers is conducted through letters sent via the U.S. Postal Service. Officials urge residents to delete suspicious messages and to contact the department directly with any questions about refunds or tax obligations. The state’s Individual Income Tax Information Line can also be used to log these scams and verify tax information.

    Authorities in both states describe these fraudulent texts as another tool in the cybercriminal playbook. They rely on urgency and the appearance of official language to pressure recipients into surrendering personal data. Cybersecurity experts note that links embedded in such messages often lead to convincing but fraudulent websites designed to capture bank account or credit card details.

    These scams also take advantage of the psychology of tax season. Residents may already be anticipating communication about refunds or tax issues, and scammers exploit this expectation by imitating the formal language of government. References to state statutes or threats of forfeiture are designed to create an appearance of authority and urgency, making recipients more likely to respond without questioning the message’s authenticity.

    Smishing campaigns have historically focused on banks, shipping companies, and retailers, but government agencies have increasingly become the target. By impersonating tax departments or other state offices, scammers add a layer of credibility that makes their messages seem harder to dismiss. This evolution reflects a broader trend in cybercrime, where attackers adjust their tactics to exploit the most trusted institutions and the most stressful times of year.

    As tax agencies across different states continue to issue similar warnings, the pattern highlights the adaptability of smishing campaigns and the importance of public awareness. Residents who receive suspicious messages are advised to treat them with caution, verify claims directly with state agencies, and avoid engaging with any request for personal or financial information delivered by text.

     

  • Geebo 8:00 am on March 14, 2025 Permalink | Reply
    Tags: , , , smishing,   

    FBI Warns: Toll Text Scam Sweeping the U.S. 

    FBI Warns: Toll Text Scam Sweeping the U.S.

    By Greg Collier

    The latest wave of scams preying on unsuspecting Americans has taken the form of fraudulent road toll collection texts, prompting the FBI to issue a public warning. These deceptive messages claim that recipients have outstanding toll balances, threatening fines or even suspension of driving privileges if they fail to make immediate payment. But rather than being legitimate notices from state toll authorities, these texts are part of a growing cybercrime operation designed to steal personal and financial information.

    This type of scam falls under ‘smishing’, a variant of phishing that relies on SMS messages rather than emails. The scammers’ approach is alarmingly effective. Messages appear authentic, often using official-sounding language and formatting that mirrors legitimate toll collection agencies. The scam is spreading rapidly, shifting from state to state with nearly identical wording in each new location.

    Authorities are urging recipients not to engage with these messages. The FBI recommends reporting them through its Internet Crime Complaint Center and then deleting them without responding. Unfortunately, the fraudsters behind this scheme have refined their methods to circumvent certain smartphone security features. For example, while Apple restricts clickable links in texts from unknown senders, these scammers prompt users to reply with ‘Y’ to re-establish communication, bypassing this safeguard.

    A cybersecurity analysis revealed that bad actors have registered over 10,000 domains to facilitate these scams, targeting toll services and package delivery systems across multiple states and even into Canada. The scale of this operation suggests a level of coordination that goes beyond the typical small-scale scam.

    Historically, the most frequently reported phone scam involved fraudulent jury duty claims, where scammers would impersonate court officials and demand immediate payment under the threat of arrest. However, at least anecdotally, the toll text scam appears to have surpassed it in prevalence. With so many Americans accustomed to electronic toll payments, these fraudulent messages often seem credible at first glance, increasing the likelihood of engagement.

    The unfortunate reason this scam is becoming so common is simple, it’s working. Scammers wouldn’t keep running these schemes if they weren’t succeeding in tricking victims into handing over their personal and financial information. Every person who falls for the scam encourages criminals to expand their operations, making it even more widespread.

    The best defense remains skepticism. State agencies do not request payments through unsolicited text messages, and any demand for financial information via text should be treated with extreme caution. As the scam continues to evolve, staying informed is key to avoiding falling victim to these deceptive tactics.

     

  • Geebo 9:00 am on March 7, 2025 Permalink | Reply
    Tags: , , , smishing,   

    New $5K Scam Uses DOGE & Gov’t Promise 

    New $5K Scam Uses DOGE & Gov’t Promise

    By Greg Collier

    A new scam is making the rounds via text message, luring victims with the promise of a $5,000 federal subsidy. Authorities in Crawford County, Kansas, are warning residents to stay vigilant as scammers attempt to trick recipients into handing over personal information under the guise of government assistance.

    The fraudulent message claims that recent budget cuts by the Department of Government Efficiency have freed up money for distribution. It instructs recipients to reply with a confirmation, reopen the message, and click a provided link. This is an attempt to bypass security settings and increase engagement. The scammers promise that after submitting personal details, a check will be deposited directly into the recipient’s bank account or mailed within days.

    Officials have confirmed that this is a scam. Legitimate government agencies do not distribute funds in this manner, nor do they request sensitive information via unsolicited text messages. Anyone receiving such a message should delete it immediately and block the sender if possible. If there’s any uncertainty about a suspicious message, local law enforcement agencies can provide guidance, and reports can also be filed through official fraud reporting channels.

    This scam is just one example of how fraudsters exploit official-sounding names to appear legitimate. By invoking the ‘Department of Government Efficiency’, scammers create a sense of credibility, making their scheme more convincing. Similar tactics have been used in the past, and it’s likely that more scams will emerge using fabricated agencies or misleading government affiliations. Staying cautious of unsolicited financial offers, especially those that pressure quick action or request personal information, is essential in avoiding these ever-evolving threats.

     

  • Geebo 9:00 am on February 13, 2025 Permalink | Reply
    Tags: , , , smishing,   

    Florida Fights Back Against Toll Scam 

    Florida Fights Back Against Toll Scam

    By Greg Collier

    Scammers are becoming increasingly deceptive in their efforts to steal personal and financial information, and one of the more widespread schemes involves fraudulent text messages about unpaid toll fees. These messages often claim the recipient has an outstanding balance and must make an immediate payment to avoid hefty fines. The links provided in these messages lead to fake websites designed to harvest sensitive details such as credit card numbers and driver’s license information.

    The Federal Bureau of Investigation has been warning the public about these scams, which have been reported in multiple states. With thousands of complaints already filed, law enforcement agencies across the country continue to urge drivers to stay alert. This type of scam, known as ‘smishing’, uses deceptive text messages to trick individuals into clicking fraudulent links. The goal is to create a sense of urgency, convincing victims to act quickly before they have time to verify whether the claim is legitimate.

    Although this scam has targeted drivers nationwide, Florida has been hit particularly hard due to its extensive toll road network. Many residents and tourists have received text messages claiming to be from SunPass, the state’s toll collection system. In response, authorities in Florida have worked aggressively to combat the threat. Hundreds of fraudulent websites imitating SunPass have already been shut down as part of a coordinated effort to protect consumers.

    Despite the progress made in Florida, scammers continue to adapt their methods, and similar schemes remain active in other parts of the country. The key to avoiding these scams is recognizing that no legitimate toll agency will send text messages demanding payment. Official toll operators communicate through secure online accounts, mailed invoices, and authorized customer service channels.

    Anyone receiving a suspicious text about unpaid tolls should avoid clicking any links and instead check their account directly through the official website of their toll provider. Reporting these fraudulent messages to law enforcement and consumer protection agencies also helps authorities track and shut down new scam operations as they emerge.

    As digital threats continue to evolve, staying informed is the best defense. Scammers rely on fear and urgency to manipulate their victims, but by remaining cautious and verifying any unexpected messages, drivers can protect themselves from falling victim to these fraudulent schemes.

     

  • Geebo 9:00 am on February 4, 2025 Permalink | Reply
    Tags: , , , smishing   

    Another Scam, Another Bank That Won’t Help 

    By Greg Collier

    For many, a bank is more than just a place to store money, it’s a safeguard. A financial institution should stand as a final layer of protection when something goes terribly wrong. But when scammers strike, these same banks often turn their backs, leaving victims not only financially devastated but utterly abandoned by the institutions they trusted the most.

    A couple in Virginia Beach learned this lesson the hard way after discovering more than $15,000 had vanished from their Bank of America account. The loss wasn’t the result of misplaced trust or a momentary lapse in judgment. It was a sophisticated scam, likely involving some form of phone compromise, that drained their account instantly.

    The warning signs were there. The couple received a barrage of 700 text messages in the middle of the night, a tactic known as smishing or SMS flooding, designed to distract victims while fraudsters bypass security measures. By morning, the money was gone. In the immediate panic, they did everything right. They contacted the bank. They filed a fraud report. They sought expert opinions on what could have happened. And yet, after a month-long ‘investigation’, the response from Bank of America was clear. No reimbursement.

    Their reasoning? The bank determined that the transaction had been ‘validated’ with an authorization code sent to a registered phone number on the account. That same device, they claimed, had been used for previous transactions. In other words, from their perspective, the transfer appeared legitimate, and as a result, the victims were out of luck.

    What’s particularly infuriating about cases like these is the rigidity of the bank’s stance. Even with mounting evidence that the couple had been scammed, including police involvement and a clear trail showing where the money had been transferred, the response was a resounding no. Banks often tout their fraud protection policies, reassuring customers that they prioritize security. Yet, when these very same customers become victims, the banks default to denial, hiding behind vague policies that shift the blame back onto those they’re supposed to protect.

    It’s a familiar pattern. Financial institutions are quick to take action when a fraudulent credit card charge appears, often reversing the transaction with little fuss. But when it comes to wire transfers, which move money directly from an account, the response is far more reluctant. Banks frequently claim that once a transaction is authorized, recovery is difficult, if not impossible. Meanwhile, fraudsters exploit these weak points with increasing sophistication, adapting their tactics faster than security measures can keep up.

    The consequences extend beyond the immediate financial loss. Victims are left battling an institution that should be on their side, forced to fight an uphill battle while knowing that the odds of ever recovering their stolen money are slim. They are told, in not-so-many words, that they must have somehow been responsible, even when all signs point to the contrary.

    For a couple who had been loyal customers for over two decades, the betrayal stings even more. A bank that happily acknowledges their ‘preferred’ status when things are going well is suddenly indifferent when they need actual support. Their frustration is not just about the money, it’s about the realization that, when it truly mattered, their bank wasn’t there for them.

    This isn’t an isolated incident. It’s part of a growing trend where banks fail to provide meaningful protection against evolving scams. Customers are expected to navigate an increasingly complex web of digital threats on their own, and when something goes wrong, they are left holding the bill.

    As financial fraud becomes more sophisticated, banks must do more than simply shrug and point to policy fine print. They must take responsibility, improve their fraud detection methods, and most importantly, stand by their customers when they need help the most. Until then, victims of scams will continue to find themselves abandoned by the very institutions that promised to protect them.

     

  • Geebo 9:01 am on January 28, 2025 Permalink | Reply
    Tags: , , smishing, , ,   

    Stop Toll Text Scams in Their Tracks 

    Stop Toll Text Scams in Their Tracks

    By Greg Collier

    The rise in text message scams has created a pressing need for awareness, particularly for drivers who rely on automated tolling systems. Scammers are exploiting this technology by impersonating services like E-ZPass, SunPass, and others to trick users into revealing sensitive personal or financial information.

    Recent reports reveal a spike in fraudulent text messages, falsely claiming recipients owe unpaid tolls. These messages often use urgent language, warning about excessive fees or deadlines to avoid penalties. While the messages may seem legitimate, tolling agencies have consistently reiterated that they do not request payments through text messages or links sent via SMS. Legitimate communications typically occur through secure websites or official emails.

    The issue has become especially relevant in Ohio, where toll enforcement policies have recently shifted. The Ohio Turnpike has implemented late fees for unpaid tolls. Drivers who fail to pay their tolls within 30 days will incur a $5 late fee for each unpaid toll. These changes coincide with the rollout of Ohio’s automated tolling system, which has encountered some growing pains. While the new system allows E-ZPass users to bypass toll booths at highway speeds, drivers without E-ZPass must still use cash or credit card lanes to settle their tolls. This shift has created some confusion, which scammers are exploiting to send fraudulent messages targeting unsuspecting customers.

    These scams use ‘smishing’, a phishing attempt via SMS, to mimic official correspondence. They often include non-local phone numbers, emojis, or links to unverified websites. Clicking these links or sharing personal information can compromise financial accounts and lead to identity theft. Many scammers add urgency to their messages, hoping to pressure recipients into acting quickly without verifying the legitimacy of the request.

    Tolling agencies and consumer protection organizations are urging drivers to remain vigilant. Verifying suspicious messages directly with tolling agencies through their official websites or customer service channels is essential. Ignoring these messages is often the best approach, as any response confirms the validity of your phone number to scammers, potentially increasing the likelihood of future attacks.

    If you’ve already clicked on a suspicious link or shared personal information, immediate action is crucial. Changing account credentials, freezing credit, and contacting your bank can help mitigate potential damage. Reporting scams to authorities like the Federal Trade Commission or relevant state agencies aids in tracking and shutting down these fraudulent schemes.

    For Ohio drivers, understanding the new late fee structure and legitimate communication methods of the Ohio Turnpike is key to avoiding confusion. Official Ohio websites are the only trusted sources for E-ZPass payments. Any payment requests outside these platforms should be treated with skepticism.

    While it’s nearly impossible to prevent scam attempts entirely, being informed can significantly reduce the risk of falling victim. By recognizing the tactics scammers use, verifying payment requests independently, and staying calm under pressure, drivers can protect their personal information and financial security.

     

  • Geebo 9:00 am on January 14, 2025 Permalink | Reply
    Tags: , iMessage, , , smishing   

    Scammers Find New Way into Your iPhone 

    Scammers Find New Way into Your iPhone

    By Greg Collier

    In an era where smartphones are central to our lives, the prevalence of mobile-focused cyber threats has grown exponentially. One such tactic, known as smishing, phishing through SMS, has become a favored method for cybercriminals to exploit unsuspecting users. Recently, reports from Bleeping Computer have highlighted an alarming trend where attackers leverage a subtle trick to bypass Apple iMessage’s built-in phishing protection, putting users at risk.

    Apple iMessage is designed with user safety in mind. One of its protective measures disables links in messages sent from unknown senders, whether from an email address or a phone number. This proactive approach ensures that potentially malicious links cannot be easily accessed by recipients. However, Apple has confirmed that this safeguard can be unintentionally disabled if the user replies to the message or adds the sender to their contact list.

    This is where cybercriminals have found an opening. Over recent months, there has been a noticeable rise in smishing campaigns that aim to deceive users into replying to suspicious texts. These messages often impersonate trusted organizations, claiming issues such as unpaid road tolls or shipping problems. They instruct recipients to reply with a specific response, such as ‘Y’, under the guise of resolving the issue or enabling a necessary link. This simple act reactivates the links in the text and disables iMessage’s phishing protection for that specific sender.

    This strategy exploits common behaviors. Many people are accustomed to replying with terms like ‘Yes’, ‘No’, or ‘STOP’ to confirm appointments or manage subscriptions. Cybercriminals bank on this familiarity to prompt a reply, effectively bypassing the safeguards that initially protected the user. Beyond enabling links, the act of replying signals to the attacker that the recipient is engaged and potentially vulnerable, increasing the likelihood of future targeting.

    This tactic poses a significant risk to less tech-savvy users, including older adults, who may be more trusting of such messages. Once the phishing links are enabled, clicking them can lead to fraudulent websites designed to harvest personal information, financial details, or other sensitive data. Even those who don’t click the links but respond to the message may find themselves targeted by a higher volume of scams.

    If you encounter a message from an unknown sender with disabled links or instructions to reply, it’s critical to exercise caution. Do not reply or interact with the message. Instead, contact the purported organization directly through official channels to verify the legitimacy of the communication. Remaining vigilant and skeptical of unsolicited messages is the best way to protect yourself and your personal information in the face of these evolving threats.

    Cybercriminals are constantly refining their techniques to exploit unsuspecting users. By understanding these tactics and staying alert, you can shield yourself from the risks they pose and help others do the same.

     

  • Geebo 9:01 am on January 3, 2025 Permalink | Reply
    Tags: , FasTrak, , , smishing, ,   

    Toll Scams Sweeping the Nation Again 

    Toll Scams Sweeping the Nation Again

    By Greg Collier

    Across the United States, drivers are increasingly becoming targets of sophisticated toll payment scams. These scams often involve fraudulent text messages or emails claiming unpaid tolls. The messages aim to trick individuals into clicking on malicious links and providing sensitive personal and financial information. Authorities and tolling agencies nationwide are warning drivers to stay vigilant and protect themselves from these fraudulent schemes.

    In California, text scams have surged, falsely claiming to be from FasTrak, the state’s electronic toll collection system. The messages often direct recipients to websites that appear legitimate but are operated by scammers. These websites ask for banking or credit card information, exploiting unsuspecting users. Official tolling agencies in California emphasize that they do not send text messages to individuals without accounts and never request payments through unsolicited links.

    South Florida drivers have also reported similar schemes. Fraudulent messages, often labeled as ‘final reminders’, urge recipients to copy and paste links into their browsers to resolve alleged unpaid tolls. The realistic appearance of these scams, from their professional-looking websites to the urgent tone of their messages, has made them particularly effective. Local transportation officials have reiterated that they do not request payments or account actions via text messages.

    In New York, E-ZPass users have been targeted by messages claiming to be from ‘NY Toll Services’. These messages ask for sensitive information like Social Security numbers and dates of birth, details that legitimate toll services never request. Officials have reminded drivers to only use authorized websites for account management and toll payments.

    The problem isn’t confined to these regions. Similar scams have been reported in Illinois, Pennsylvania, and other parts of the country. These widespread schemes often exploit the increasing reliance on electronic toll collection systems, taking advantage of the convenience and automation that make such systems attractive to drivers.

    The scams share common tactics: a sense of urgency, professional presentation, and the impersonation of trusted entities. Cybersecurity experts urge individuals to exercise caution when receiving unsolicited messages, especially those prompting immediate action. Carefully inspecting sender information, avoiding unfamiliar links, and independently verifying claims by contacting tolling agencies through official channels can go a long way in preventing fraud.

    Those who suspect they have encountered a toll scam are encouraged to report it to federal authorities, including the FBI’s Internet Crime Complaint Center. Additionally, anyone who may have inadvertently shared personal or financial information should take immediate steps to secure their accounts and monitor for suspicious activity.

    As these scams continue to evolve, awareness is the most effective defense. By recognizing the signs of phishing attempts and relying only on official communication channels, drivers can safeguard their information and help curb the impact of these nationwide toll scams.

     

← Older posts

c
Compose new post
j
Next post/Next comment
k
Previous post/Previous comment
r
Reply
e
Edit
o
Show/Hide comments
t
Go to top
l
Go to login
h
Show/Hide help
shift + esc
Cancel