Difference between revisions of "Scams and Security Risks"
(Scams and Other Security Risks.) |
m |
||
Line 104: | Line 104: | ||
* '''Am I being asked to move to another platform?''' Scammers often hunt for victims on secure platforms, such as Facebook Messenger. Soon after, they ask to move to other platforms to chat or finish a transaction, so they can commit their crimes more easily. | * '''Am I being asked to move to another platform?''' Scammers often hunt for victims on secure platforms, such as Facebook Messenger. Soon after, they ask to move to other platforms to chat or finish a transaction, so they can commit their crimes more easily. | ||
* '''Is the payment method non-traditional?''' Traditional payment methods, such as credit cards and PayPal, are traceable and come with payment protections. Scammers don’t like these. They usually ask for payment in cryptocurrency, gift cards, cash, or wire transfers. | * '''Is the payment method non-traditional?''' Traditional payment methods, such as credit cards and PayPal, are traceable and come with payment protections. Scammers don’t like these. They usually ask for payment in cryptocurrency, gift cards, cash, or wire transfers. | ||
* '''How to Avoid Scams?''' | |||
# '''Never send money via gift card or wire transfer to someone you have never met face-to-face.''' Seriously, just don’t ever do it. If they ask you to use a wire transfer, a prepaid debit card, or a gift card; those cannot be traced and are as good as cash. Chances are, you won't see your money again. See the Federal Trade Commission's video on how scammers try to convince you to pay. If someone is trying to convince you to pay this way, stop, get off the phone or the computer, and file a complaint'''.''' | # '''Never send money via gift card or wire transfer to someone you have never met face-to-face.''' Seriously, just don’t ever do it. If they ask you to use a wire transfer, a prepaid debit card, or a gift card; those cannot be traced and are as good as cash. Chances are, you won't see your money again. See the Federal Trade Commission's video on how scammers try to convince you to pay. If someone is trying to convince you to pay this way, stop, get off the phone or the computer, and file a complaint'''.''' | ||
# '''Avoid clicking on links or opening attachments in unsolicited emails.''' Links, if clicked, will download malware onto your computer, smartphone, tablet, or whatever electronic device you're using at the time, allowing cyber thieves to steal your identity. Be cautious even with an email that looks familiar; it could be fake. Instead, delete it if it looks unfamiliar and block the sender. | # '''Avoid clicking on links or opening attachments in unsolicited emails.''' Links, if clicked, will download malware onto your computer, smartphone, tablet, or whatever electronic device you're using at the time, allowing cyber thieves to steal your identity. Be cautious even with an email that looks familiar; it could be fake. Instead, delete it if it looks unfamiliar and block the sender. |
Latest revision as of 14:13, 28 December 2024
What is a Scam?
A scam, otherwise referred to as, fraud, con, diddle or swindle, is a deceptive act made to deceive and obtain illegally: money, personal details, and data. Scams offer an attractive deal or false information as a way to mislead. Beware when asked to provide financial and personal information of any kind to anyone who claims to be from your family, your bank, a utility company, an insurance company, a company you may do business with (for example, Amazon or Costco), a service provider (for example, duct cleaner, internet or mobile services), and the government. A scam is a confidence trick, with an attempt to defraud after first gaining trust. Scams commonly fake their caller ID names, emails, and numbers to make them appear to be from an authorized company or government agency. Beware of scams!
Types of Scams
The list of online scams is constantly growing, and many existing scams are becoming more sophisticated and harder to detect as technology evolves. Learning to identify the different types of scams is a key step in protecting yourself against them.
Here’s a list of the most common scams that occur today:
Phishing scams:
Phishing scams happen when a scammer sends you an email pretending to be someone you trust. They might imitate a coworker, your bank, a friend, or an authority figure, such as a police officer. They typically ask for your personal information or money. Other types of phishing are smishing (via text message) and vishing (via phone call).
Scammers often use spoofing in phishing scams, where scammers mask email headers, phone numbers, and other identifying information to make their schemes more believable. They can recreate a logo to look real or spoof a caller ID to read the name and number of a trusted organization.
Amazon and USPS scams are common examples of phishing scams. Amazon scams may claim there’s a problem with your account and you need to verify your personal details. USPS text scams may claim that in order to receive a package you need to update your address via a (malicious) link.
Sweepstakes and prize scams:
In a sweepstakes or prize scam, a fraudster contacts you saying you’ve won something. They could invent a fake draw or spoof a message from a well-known company like the National Sweepstakes Company.
Scammers usually say that you need to pay a fee, shipping costs, or admin fee to release your non-existent winnings, which a legitimate lottery or prize organization would never do. Be careful — they could also be after your personal information to run future scams and trick you into handing data over. Never offer up money or sensitive data to an unsolicited request; and if you haven’t entered a competition, the “winnings” are almost certainly not real.
SIM swap scams:
SIM swap scams involve a scammer transferring your phone number to a new SIM card they fraudulently ordered. They can do this by pretending to be you and asking your mobile provider for a SIM replacement.
With your number, the scammer can intercept calls and messages sent to you. This means they can receive two-factor authentication (2FA) codes and messages sent to your phone, which could let them access your accounts.
Online Bait and switch scams:
A bait and switch scam is when a scammer advertises a great deal, then replaces the product or service with something inferior. Or, they may claim that the item is no longer available at the time of purchase and offer pricier options. This scam is common in online shopping.
For example, a scammer might advertise a MacBook Air at 50% off the retail price. When you try to take advantage of the deal, you can’t purchase that laptop, but you can conveniently purchase a MacBook Pro at near-full price.
Webcam scams:
A webcam scam is when a fraudster contacts you and says they recorded an embarrassing or incriminating video of you over your webcam. They might then extort you for a large sum of money (often cryptocurrency) in exchange for not publishing the video online or sharing it with your contacts. In a webcam scam, there is no video, only the fear of one existing.
That’s not to say hackers can’t hijack your computer’s webcam to spy on you and blackmail you — this is known as webcam hacking. To do this, they often infiltrate your device with malware, sometimes using phishing scams. Once they have control, they can turn your webcam on remotely and record you without your knowledge.
Tech support scams:
Tech support scams typically begin by scaring you into thinking your computer has a virus or needs urgent repair. You might see a fake virus notification pop up with a phone number to call, or a scammer may call you pretending to be from a reputable company like Microsoft. Their goal is to scare you into giving them money or personal information.
When you speak to the fake support person, they’ll either ask for remote access to your device (and infect it with malware), encourage you to buy an antivirus to get rid of a supposed malware infection (you either receive no software or “antivirus” laced with malware), or ask you to confirm personal details that they can use in a future scam or to steal your identity.
Tech support scams often try to trick you into calling a fake helpline.
Fake antivirus software:
Fake antivirus software is malware masquerading as antivirus protection. Scammers use fake virus warnings and scareware to trick you into thinking your device is infected.
These messages often tell you something very bad will happen if you don’t download the antivirus software urgently. Once you download the malware, the scammer may be able to access your personal information, webcam, and more.
Only download antivirus software from a reputable cybersecurity company — either directly from their website or an official app store. AVG AntiVirus Free is an award-winning antivirus tool that can help protect your devices. Each month, we help stop over 1.5 billion cyberattacks around the globe. Download it now and start protecting your device against dangerous scam web pages and other online threats.
Social media scams:
Social media scams are scams that happen on social media platforms like Facebook, Instagram, and X (formerly Twitter). Scammers use different tactics to deceive people on these platforms, such as creating fake profiles, sending phishing messages, and creating clickbait posts.
Many online scams, such as dating scams, also begin on social media platforms. There are also social media-specific scams like enticing quizzes that lure users into sharing personal information and perhaps forwarding the quiz to their contacts or reposting it. Scammers can also create fake profiles to receive donations for a made-up medical issue or fake charity.
Dating App scams:
Dating App scams, or romance scams, happen when scammers take advantage of people looking for love or companionship online. They do this in a number of ways, but most involve creating fake dating profiles on dating websites or apps. The goal is to build trust quickly, then ask for money — for an emergency that pulls at the victim’s heartstrings or to buy a plane ticket to visit them, for instance:
Sugar daddy scams often start over social media and involve a scammer with a fake profile contacting a target, offering to be their sugar daddy and pay them for doing very little. This scam also involves the scammer asking for money. Usually, they say they need to verify the sugar baby’s account details or their sincerity, which they can do by paying a small amount to the sugar daddy.
When scammers create fake identities and develop relationships with real people, it’s called catfishing. They usually do this by using attractive photos from another person’s account and inventing a fake persona that’s irresistible.
Crowdsourcing scams:
Crowdsourcing scams are fake crowdfunding campaigns. Popular crowdfunding sites like Kickstarter and GoFundMe are platforms where people can ask a large audience for money. They might do this to raise money for a project, support a charity, or ask for assistance covering medical care.
Scammers prey on the generosity of others by setting up a campaign under false pretenses, collecting the money, and disappearing.
For example, a scammer might pose as a software developer and set up a crowdfunding campaign to fund their new app. They might promise supporters lifetime access to the app and a bunch of other perks. But in the end, the app is never developed and the scammer is never heard from again.
Rental scams:
Rental scams happen when scammers post fake rental properties online and try to solicit money from hopeful renters. Scammers advertise properties they don’t own or that don’t even exist. Then, they’ll pressure victims into paying a deposit or the first month’s rent in advance.
Once the money is transferred, the scammer disappears. Sometimes, victims don’t discover until moving day that their dream apartment was never available.
Rental scams commonly take place on social media. However, they can also happen on more regulated apartment rental sites and even vacation rental apps like Airbnb.
Online shopping scams:
Online shopping scams can be in the form of a fake website, a fake ad, or a shop in a genuine online marketplace. The aim is to get your money or personal information. If you’re a buyer, watch out for unbelievable prices — the item may not exist or the seller might run a bait-and-switch scam and send you something inferior.
Also, never trust a seller who wants to take the transaction off a marketplace, as you’ll likely lose any buyer protection available. This is how some Cash App scams or Venmo scams happen.
Advance fee scams:
Advance fee scams promise victims a large reward like a loan, inheritance, prize, or business opportunity after the victim pays a much smaller fee.
For example, you might receive an email informing you that you’ve inherited $50,000 from a relative overseas with no immediate next of kin. The catch is you have to pay for legal fees or documentation to receive your share.
Quishing scams:
Quishing scams are when scammers use fraudulent QR codes to take victims to malicious websites or request payments. Scammers can do this by replacing real QR codes with scam QR codes or including a fake QR code online or at a physical location.
For example, you might have the opportunity to pay for parking or event access using a digital QR code or a QR code sticker. Scammers will replace these codes with their own. So, when you think you’re buying a ticket, you’re actually sending money to a scammer.
Scammers might also print QR codes and place them on ads, movie posters, or magazines. Victims think that these QR codes are legitimate and follow them to malicious websites.
How to Identify a Scam?
While there are different scams out there, most have a few things in common. For example, all scammers will ask you to give them something — usually information or money. If you learn to identify a scam, you can help avoid becoming a victim.
Ask yourself these questions to help identify scam red flags:
- Do I know the person contacting me? If you don’t, they might be a scammer.
- Is their communication unexpected? Scammers try to catch you off guard with unexpected messages and lure you in with enticing offers.
- Is this person’s email address or phone number suspicious? If you get a suspicious text supposedly from someone you know, cross-check it with the contacts in your phone. Or, if it’s from a business, check the email address or phone number on the official website to see if it’s legitimate (but remember it could be spoofed).
- Is this offer too good to be true? Offers that are too good to be true hijack your common sense and entice you to take a risk.
- Am I being pressured to act urgently? Scammers use fear to pressure you into acting without thinking. For example, they might tell you that you need to pay a $50 account maintenance fee or your account will be permanently locked after a certain amount of time.
- Are they requesting my personal information? Real organizations rarely ask for your personal information, and they never ask for login credentials (such as passwords).
- Am I being asked to move to another platform? Scammers often hunt for victims on secure platforms, such as Facebook Messenger. Soon after, they ask to move to other platforms to chat or finish a transaction, so they can commit their crimes more easily.
- Is the payment method non-traditional? Traditional payment methods, such as credit cards and PayPal, are traceable and come with payment protections. Scammers don’t like these. They usually ask for payment in cryptocurrency, gift cards, cash, or wire transfers.
- How to Avoid Scams?
- Never send money via gift card or wire transfer to someone you have never met face-to-face. Seriously, just don’t ever do it. If they ask you to use a wire transfer, a prepaid debit card, or a gift card; those cannot be traced and are as good as cash. Chances are, you won't see your money again. See the Federal Trade Commission's video on how scammers try to convince you to pay. If someone is trying to convince you to pay this way, stop, get off the phone or the computer, and file a complaint.
- Avoid clicking on links or opening attachments in unsolicited emails. Links, if clicked, will download malware onto your computer, smartphone, tablet, or whatever electronic device you're using at the time, allowing cyber thieves to steal your identity. Be cautious even with an email that looks familiar; it could be fake. Instead, delete it if it looks unfamiliar and block the sender.
- Do not believe everything you see. Scammers are great at mimicking official seals, fonts, and other details. Just because a website or email looks official does not mean that it is. Caller ID is commonly faked. Learn more about avoiding impostor scams.
- Double-check that your online purchase is secure before checking out. Look for the “HTTPS” in the URL (the extra s is for “secure”) and a small lock icon on the address bar. Better yet, before shopping on the website, make certain you are on the site you intended to visit. Read reviews about the quality of the merchandise, and make sure you are not buying cheap and/or counterfeit goods. Look for a brick-and-mortar address listing on the website itself and a working phone number. Take an extra step and call the number if it is a business you are not familiar with. Learn how to identify a fake website.
- Use extreme caution when dealing with anyone you’ve met online. Scammers use dating websites, Craigslist, social media, and many other sites to reach potential targets. They can quickly feel like a friend or even a romantic partner, but that is part of the con for you to trust them.
- Never share personally identifiable information with someone who has contacted you unsolicited, whether it’s over the phone, by email, on social media, or even at your front door. This includes banking and credit card information, your birthdate, and Social Security/Social Insurance numbers. Protect you and your family from identity theft.
- Resist the pressure to act immediately. Shady actors typically try to make you think something is scarce or a limited-time offer. They want to push victims to make a decision right now before even thinking through it, asking family members, friends, or financial advisors. Sometimes, they will advise against contacting anyone and just trusting them. While high-pressure sales tactics are also used by some legitimate businesses, it typically isn't a good idea to make an important decision quickly. Know what to look for when spotting a scam.
- Use secure and traceable transactions. Do not pay by wire transfer, prepaid money card, gift card, or another non-traditional payment method (see number one above). Say no to cash-only deals, high-pressure sales tactics, high upfront payments, overpayments, and handshake deals without a contract. Read all of the small print on the contract and make sure to understand what the terms are. Learn more about your rights and responsibilities when it comes to payment types.
- Be cautious about what you share on social media. Consider only connecting with people you already know. Check the privacy settings on all social media and online accounts. Imposters often get information about their targets from their online interactions and can make themselves sound like a friend or a family member because they know so much about you. Then, update and change passwords to passphrases on a regular basis on all online accounts. Protect yourself from fake social media accounts
- Block unwanted calls and text messages. Take steps to block unwanted calls and to filter unwanted text messages.
- Do not give your personal or financial information in response to a request that you didn’t expect. Honest organizations won’t call, email, or text to ask for your personal information, like your Social Insurance number, bank account, or credit card numbers.
- If you get an email or text message from a company you do business with and you think it’s real, it’s still best not to click on any links. Instead, contact them using a website you know is trustworthy. Or look up their phone number. Don’t call a number they gave you or the number from your caller ID.
- Resist the pressure to act immediately. Honest businesses will give you time to make a decision. Anyone who pressures you to pay or give them your personal information is a scammer.
- Know how scammers tell you to pay. Never pay someone who insists that you can only pay with cryptocurrency, a wire transfer service like Western Union or MoneyGram, a payment app, or a gift card. And never deposit a check and send money back to someone.
- Stop and talk to someone you trust. Before you do anything else, tell someone — a friend, a family member, a neighbor — what happened. Talking about it could help you realize it’s a scam.