Greg's Corner

Tagged: travel scam Toggle Comment Threads | Keyboard Shortcuts

• 

  Geebo 9:00 am on December 18, 2025 Permalink | Reply
  Tags: evil twin attack ( 4 ), free wifi, Scams ( 1,637 ), travel ( 4 ), travel scam   

  Holiday Travel Warning: The “Evil Twin” Wi-Fi Scam Explained 

  

  By Greg Collier

  As millions of people travel for the holidays, airports, hotels, coffee shops, and convention centers are packed with travelers looking for one thing the moment they sit down: free Wi-Fi.

  That demand creates the perfect opening for a lesser-known but highly effective cyber scam known as the “evil twin” Wi-Fi attack—and travelers are among the most common victims.

  This scam doesn’t rely on fake prizes, urgent phone calls, or phishing emails. Instead, it quietly exploits trust, convenience, and public networks.

  What Is an “Evil Twin” Wi-Fi Network?

  An evil twin is a fake Wi-Fi network that looks legitimate but is actually controlled by a scammer.

  It’s called an “evil twin” because it is designed to closely mimic a real network you already trust.

  Examples include:

  • Airport_Free_WiFi
  • Hotel Guest Network
  • Starbucks_WiFi
  • ConventionCenter_Public

  To a traveler in a hurry, these names look normal, and that’s exactly the point.

  Once connected, the attacker can:

  • Monitor your internet traffic
  • Capture login credentials
  • Intercept emails or messages
  • Redirect you to fake login pages
  • Install malware in some cases

  You don’t need to click a suspicious link. Simply connecting can be enough.

  Why Travelers Are Prime Targets

  Holiday travelers are uniquely vulnerable to this scam for several reasons:

  • Constant movement between unfamiliar locations
  • High reliance on public Wi-Fi to avoid roaming charges
  • Urgency to check flights, reservations, rideshares, or work email
  • Distraction and fatigue, especially during delays

  Airports and hotels are particularly attractive to scammers because:

  • They host large volumes of short-term users
  • People expect multiple similarly named networks
  • Security announcements about Wi-Fi are rare or unclear

  How the Scam Typically Works

  1. A scammer sets up a portable Wi-Fi hotspot using a laptop or small device.
  2. They name it to closely resemble a legitimate network nearby.
  3. The fake network often has a stronger signal, making it appear first on your device.
  4. When you connect, one of two things happens:
     • You are silently monitored while browsing
     • You’re redirected to a fake “sign-in” page asking for email, social media, or even payment details

  In many cases, victims never realize anything went wrong until accounts are compromised later.

  What Information Can Be Stolen?

  Depending on the setup, an evil twin network can expose:

  • Email usernames and passwords
  • Social media logins
  • Online banking credentials
  • Corporate VPN access
  • Travel rewards accounts
  • Session cookies that allow account takeover without a password

  Even encrypted websites (HTTPS) don’t fully protect against every version of this attack, especially if users ignore browser warnings or log into insecure pages.

  Red Flags

  While evil twin networks are designed to look legitimate, warning signs may include:

  • Multiple Wi-Fi networks with nearly identical names
  • A login page that looks generic or unbranded
  • Requests for unnecessary personal information
  • A network that suddenly disconnects and reconnects repeatedly
  • Browser warnings about security certificates

  If anything feels off, disconnect immediately.

  How Travelers Can Protect Themselves

  A few simple precautions can dramatically reduce risk:

  • Avoid public Wi-Fi for sensitive activities like banking or work logins
  • Confirm the exact network name with airport signage or hotel staff
  • Turn off auto-connect for open Wi-Fi networks
  • Use a trusted VPN when connecting on the road
  • Enable two-factor authentication on important accounts
  • Forget networks after use so your device doesn’t reconnect automatically

  When in doubt, using your phone’s cellular hotspot is often safer than unknown public Wi-Fi.

  Final Thoughts

  The evil twin Wi-Fi scam highlights an uncomfortable reality. Not all scams announce themselves.

  Some of the most effective modern fraud relies on blending into everyday infrastructure, airports, hotels, cafés, and other public spaces we assume are safe.

  As travel increases during the holiday season, awareness becomes the most effective defense.

  If you wouldn’t hand your phone unlocked to a stranger in an airport, don’t hand over your internet traffic either.

  Free Wi-Fi is convenient, but when it comes to unknown networks, convenience can be costly.

  Staying connected shouldn’t mean staying exposed.

  Further Reading

  • What Is an Evil Twin Attack? Evil Twin Wi-Fi Explained
  • What Is an Evil Twin Attack and How to Stop It
  • Evil Twin Attack: What It Is, How It Works, and How to Stay Safe
  • Why Public Wi-Fi at Tourist Hotspots Is a Goldmine for Hackers
  • Experts Warn of Evil Twin Attacks on Public Wi-Fi for Travelers
  • The Dangers of Public Wi-Fi During Holiday Travel
  • Evil Twin (Wireless Networks)
   

  Leave a ReplyCancel reply
• 

  Geebo 8:00 am on October 29, 2025 Permalink | Reply
  Tags: customer service ( 58 ), customer support ( 25 ), Expedia ( 2 ), impersonation scam ( 204 ), Scams ( 1,637 ), travel scam   

  Double-Billed and Deceived: A Travel Scam 

  

  By Greg Collier

  A Tennessee man thought he was booking a dream trip to Prague through Expedia. Instead, he was talking to a scammer pretending to be from the travel site and ended up paying $722 twice for the same flight.

  What’s Going On:

  David, who asked that his last name not be used, booked his trip online and even signed up for a new “One Key” credit card offer to get a travel bonus. Everything looked legitimate until he received an email claiming his payment was denied. The sender? Supposedly Expedia.

  When he called the number in the email, a woman claiming to be an Expedia representative told him he needed to repay the $722 to secure his flight. To avoid losing his vacation, he complied. What she didn’t say: he was paying PCM Travels, a company later flagged for deceptive practices and scam alerts.

  Why It’s Effective:

  This scam works because it piggybacks on real bookings. Victims like David have already made a legitimate purchase, so follow-up emails referencing the same dollar amounts appear trustworthy. The scammers add pressure by implying your booking is at risk unless you act immediately, a classic manipulation tactic.

  By the time the second payment is made, the money is gone. To make matters worse, scammers often insert legal-sounding language like “non-refundable” and “non-disputable” to discourage victims from contacting their credit card companies.

  Red Flags:

  • Emails claiming payment failure right after a successful booking
  • Customer service numbers in emails instead of on the company’s official website
  • Requests for payment by phone or through a new company name (like PCM Travels)
  • Statements that charges are “non-refundable” or “can’t be disputed”

  How to Protect Yourself:

  • Always verify contact info. Don’t use numbers or links from emails; instead, go directly to the airline or booking site’s official page.
  • Check your billing statements closely after booking. If you see double charges or unfamiliar company names, dispute them immediately.
  • Avoid offers that sound too generous. Legitimate travel rewards don’t require on-the-spot payments or new credit cards to redeem.
  • Freeze your card the moment you suspect a scam.

  The Aftermath:

  David is still fighting to get his $722 back. Despite showing his credit card company the proof, the scammers had documentation showing he “agreed” to the charge, technically true, but under false pretenses. He’s now submitting a letter of intent in hopes the dispute can be reopened.

  Final Thoughts:

  Travel scams like this are growing more sophisticated, exploiting real company names, official-looking emails, and victims’ excitement about upcoming trips. Always book directly through official airline or hotel websites, and never let urgency override your instincts.

  Have you been targeted by a fake travel agent or booking site? Share your experience below or send this post to someone planning their next vacation. Awareness is the best passport against scams.

  Further Reading:

  • Federal Trade Commission: How to Avoid Travel Scams
  • Better Business Bureau: Vacation Scams and How to Spot Them
  • Expedia Customer Support – Verify Bookings Safely
  • WATE Investigations: Blount County Man Discovers Scam After Being Double-Billed for Flight (Oct. 2025)
   
• 

  Geebo 8:00 am on August 21, 2025 Permalink | Reply
  Tags: baggage tags, boarding pass, identity theft ( 131 ), Scams ( 1,637 ), travel scam, traveling ( 16 )   

  The Baggage Tag Scam You Didn’t Expect 

  

  By Greg Collier

  A recent report from Moneywise highlights how something as simple as a discarded airline baggage tag can open the door to fraud and identity theft. The adhesive tags that airlines place on luggage are meant to ensure that bags are routed correctly, but they also contain more personal information than many travelers realize.

  These tags often display details such as the passenger’s name, flight number, date of travel, and destination. Some may also include the booking reference, place of origin, and even the weight of the bag. With that much data available, scammers are finding ways to exploit travelers who carelessly toss away their tags after a flight.

  The issue arises when fraudsters collect tags from trash bins at airports or hotels. Using the information, they attempt to impersonate travelers by filing false baggage claims, requesting reimbursement for items that were never theirs. This creates fraudulent payouts and complicates the process for genuine passengers who need to be compensated for legitimate losses.

  Boarding passes present similar risks. Both paper and digital versions can reveal key information that criminals can use to hijack accounts, steal frequent flyer miles, or commit broader identity theft. A simple scan of the barcode with a mobile app, or even a quick glance over someone’s shoulder while in line, can give a scammer access to sensitive details.

  What makes this even more concerning is how interconnected today’s travel systems have become. Many airline loyalty accounts are linked to hotel programs, rental car memberships, and even stored credit cards. That means one compromised boarding pass or baggage tag could provide a scammer with enough information to move beyond false baggage claims and into broader identity theft or account takeovers. Once inside a loyalty account, criminals can drain accumulated points, make unauthorized bookings, or harvest more personal data to use in phishing schemes.

  This type of fraud underscores the importance of treating baggage tags and boarding passes as personal documents. Careless disposal or public sharing, including posting photos on social media, can expose travelers to unnecessary risks. Instead, travelers are advised to keep these items secure until they are home and then properly shred or destroy them.

  While the threat of identity theft may feel like one more thing to worry about when traveling, it is a reminder that security extends beyond passports and credit cards. A few simple precautions with items that might seem harmless can make the difference between a safe trip and one complicated by fraud.

   
• 

  Geebo 8:01 am on July 25, 2025 Permalink | Reply
  Tags: airlines, customer service ( 58 ), impersonation scam ( 204 ), Scams ( 1,637 ), social media ( 88 ), travel scam   

  Scammers Lurk After Travel Rants 

  

  By Greg Collier

  A new scam is targeting travelers who take to social media to vent frustrations about delayed or disrupted trips. What begins as a routine post tagging an airline or airport can quickly turn into a phishing attempt from imposters posing as customer service representatives.

  One recent incident occurred after a family endured extensive travel delays returning from Mexico. A flight that was expected to take just one hour turned into a 24-hour ordeal involving hours on the tarmac and an unexpected fifteen-hour drive home. After sharing the experience on social media and tagging the involved airline and airport, the traveler’s inbox was flooded with messages that appeared to come from official customer support accounts. However, the senders were scammers attempting to collect personal information such as full names, addresses, phone numbers, and flight details.

  These fraudulent messages often come from newly created accounts that mimic real customer service pages. They may use company logos and names to appear legitimate but typically lack a verified status, have few posts, and limited engagement. In contrast, authentic corporate accounts usually have a long history, substantial followings, and verified badges.

  Travelers who wish to lodge a complaint or seek a resolution should avoid replying to social media messages that arrive unsolicited. Instead, they should reach out directly through the official website or app of the airline or travel provider. Many companies now offer live chat functions or dedicated customer support sections within their platforms.

  To avoid falling victim to this type of scam, it is important to remain cautious when receiving unexpected messages after posting a complaint. Verifying the account’s history, follower count, and contact method can help determine whether the message is genuine. Travelers should never share sensitive personal details with accounts they have not independently verified.

  In this particular case, travel insurance helped the affected family recover some of their expenses. While airing frustrations online is common, it is essential to be careful about who might be watching and waiting to take advantage.

   
• 

  Geebo 8:00 am on June 23, 2025 Permalink | Reply
  Tags: phishing ( 91 ), Scams ( 1,637 ), text scam ( 33 ), tolls ( 8 ), travel scam   

  Scammers Target Drivers With Texts 

  

  By Greg Collier

  Toll scams are among the most common digital frauds circulating today, and a recent case out of Utah demonstrates how easily they can catch someone off guard. After completing a cross-country road trip with her husband, one woman found herself navigating toll charges from several different states. She expected to receive payment notices by mail. So when a text message arrived in January asking her to settle an outstanding toll, it didn’t seem suspicious at first.

  The timing felt plausible. She was away from home and in a hurry, so she clicked the link and entered her payment information to resolve the issue quickly. Not long after, her credit union contacted her about two unauthorized charges totaling several hundred dollars. She hadn’t made the purchases. She had been scammed.

  These toll scams are convincing because they prey on routine behavior. When someone knows they’ve driven on toll roads, receiving a message about an unpaid toll feels legitimate. The scam works by mimicking a real toll agency’s communication style and creating a sense of urgency. Victims are told they must pay promptly to avoid penalties or legal consequences. That fear can override skepticism, especially when the message arrives during a busy moment.

  In this case, the text included a payment link that led to a fake site resembling a toll collection portal. Once the victim submitted her debit card information, the fraudsters immediately used it to make unauthorized purchases. This incident underscores the risk of entering sensitive information through links received by text, especially on mobile devices where it’s harder to spot red flags.

  One key detail that might have helped expose the scam was the phone number itself. The message came from a foreign country code, completely unrelated to the toll agency it claimed to represent. A closer look would have revealed that the Massachusetts toll system is unlikely to use a number based in the Philippines. Small inconsistencies like these often go unnoticed when people are trying to act quickly.

  The victim later realized that using a debit card added another layer of risk. Unlike credit cards, debit transactions can be harder to dispute, particularly if a PIN was entered. Consumer advocates often recommend using credit cards instead for online payments, as they offer stronger fraud protections.

  Toll scams like this continue to circulate because they rely on timing and familiarity. They succeed when people are distracted or expecting a message that appears to match their recent activity. Recognizing the warning signs, suspicious links, unfamiliar area codes, and rushed payment demands, can make a crucial difference. Slowing down, verifying the source, and avoiding financial transactions over text can help protect against this increasingly common form of fraud.

   
• 

  Geebo 8:01 am on June 17, 2025 Permalink | Reply
  Tags: identity theft ( 131 ), passports, Scams ( 1,637 ), travel ( 4 ), travel scam   

  Fake Passport Sites Steal Your Data 

  

  By Greg Collier

  As international travel ramps up during the busy summer, scammers are exploiting time-sensitive travelers through deceptive passport and visa renewal websites. These fraudulent sites mimic the appearance of official U.S. government pages in order to trick users into paying for services and documents that should be free.

  The scams are designed to appear as legitimate resources, often using patriotic color schemes, official-looking language, and imagery that resembles government branding. People rushing to renew their documents may not notice the subtle warning signs, such as disclaimers stating the site is not affiliated with the U.S. Department of State. Many end up paying $88 for forms that are freely available through official government channels.

  These sites also gather a wide range of personal information under the guise of processing travel documents. This may include names, birthdates, addresses, and even Social Security numbers. Often, consumers receive nothing more than a PDF containing the same information they provided, which they still must take to a government office to complete the process. The fee is essentially for repackaging publicly available forms, while also exposing users to the risk of identity theft.

  To avoid falling victim to these scams, travelers should take a few precautionary steps. Always check that the website address ends in “.gov” before entering personal information or making a payment. Government websites in the United States exclusively use the “.gov” domain. Taking time to visit the U.S. Department of State’s official site can help prevent costly mistakes and provide accurate information about current passport processing times. Researching a website through the Better Business Bureau’s Scam Tracker can also help determine if others have reported fraudulent activity.

  As tempting as it may be to cut corners when time is limited, rushing through online forms can result in wasted money and serious privacy risks. Scammers know that urgency creates opportunity. Travelers who take a few extra moments to verify where they are submitting their information can avoid becoming the next target.