A Free Public Service

SCAMS BULLETIN Host Jay White is an inactive attorney in San Mateo County, California,

November 25, 2022

Attribution Federal Trade Commission

Unwanted calls are annoying — but when a caller says they’re an FBI agent collecting on a legal judgment entered against you, it’s also scary. No matter how urgent and serious the call sounds, neither the judgment nor the agent is real. Like other impersonation scams, FBI imposters are after your money and personal information, and they might even threaten to arrest you unless you pay immediately.

Scammers will try to get you to act first and think later. If you get a call like this:

*Know that government agencies don’t call and demand money or personal information. Even if you owe money, real government representatives won’t call to threaten to arrest you, freeze your accounts, or take your property.

Never pay anyone who tells you to pay with gift cards, cryptocurrency, or wire transfers. No government agency, including the FBI, demands payment that way. Anyone who does is a scammer. Always.

*Don’t trust caller ID. Scammers use technology to fake the number they call from. Never call back phone numbers from your caller ID or voicemails.

Check with the FBI if you think the call or email is real. If you’re worried, contact one of the FBI field offices to check out the call.

Do you suspect an impersonation scam? Report it at ReportFraud.ftc.gov. Even if you didn’t lose money, your information helps investigators working to stop these scams.

#

A free Public Service

SCAMS BULLETIN Host Jay White is an inactive attorney in San Mateo County, California.

November 16, 2022

HOW BUY NOW, PAY LATER FRAUD WORKS

Scammers use two main tricks to fool retailers.

They hijack existing BNPL customers’ accounts, either by phishing or buying a person’s confidential information, like Social Security numbers, on the black market.

Or they open accounts by creating fictitious or synthetic identities by combining details of different people into a single persona – “Frankenstein identities” as they’re sometimes called in the financial security world.

Mostly, the crooks use these accounts to make big purchases, sometimes delivered to “drop” addresses. These are usually either vacant properties or belong to people who innocently agree, for payment, to forward received items abroad. Fake addresses and porch piracy at genuine addresses are also used.

Oftentimes, consumer victims don’t know they’ve been caught up in this web until they get a demand for the second staged payment – or they find an item on their doorstep that they didn’t order.

Sometimes, the scammers make a couple of BNPL purchases and pay fully for them. Then they log onto their account and change the payment method to a stolen credit card using details bought on the Dark Web.

In another twist, drug dealers and other gangs are said to be using BNPL to launder cash proceeds of crime.

HOW SHOPPERS CAN BE CAUGHT OUT

In addition to having their accounts hijacked, shoppers can be directly affected by the practices of some BNPL providers.

There’s the risk of taking on too much debt because the providers have no way of knowing how many other deals you signed up for. That’s not a scam, of course, but the result can be the same – a debt collector at your door.

In a September report, the US Consumer Finance Protection Bureau (CFPB) highlighted worries about this and other risks shoppers face when signing up for a buy now, pay later deal.

The report said the amount of information on issues like late fees, customer rights, cost of credit, and autopayments varied across the sector. And it found evidence that some shoppers were assessed multiple late fees for the same overdue payment.

There’s also a looming major issue over data privacy. BNPL lenders are able to build up detailed profiles of shopper preferences and behaviors, which could be sold or used in targeted advertising.

“The practice of harvesting and monetizing consumer data across the payments and lending ecosystems may threaten consumers’ privacy, security, and autonomy,” the CFPB said.

WHAT YOU CAN DO

You likely won’t find out that someone has used your name to sign up for a BNPL deal till you get a demand for the second payment.

Protecting your personal information from hackers, using security software and frequently changing passwords are the best ways of preventing your details from falling into the wrong hands.

In addition, monitor all your financial accounts – banks and credit cards – for suspicious activity.

And if you’re taking out a BNPL loan – yes, it’s still called a loan – make sure you check out the terms and conditions of the deal before signing up.

If you do fall victim to an account hack, contact the BNPL provider and your bank and card companies. You can also lodge a complaint with the CFPB online or by phone at 855-411-CFPB (2372).

#

A Free Public Servvice

SCAMS BULLETIN Host Jay White is an inactive attorney in San Mateo County, California.

November 11, 2022

Attribution US Federal Trade Commission

Do you want to help charities that support servicemembers and veterans? Around Veterans Day, charity scammers seek to take advantage of your generosity. They contact you about fake veteran and military causes, tugging at your heart strings — and grabbing for your wallet. A little research will help you spot these charity scams and make sure your donations count.

Charity scammers lie about who they’re affiliated with and how your money will impact the program you want to help.

Before giving, do some research to find veteran charities who use your donations wisely and avoid scams:

Check the name of the charity and its ratings. Search the charity’s name online with words like “complaint” and “fraud” and “scam.” Check the charity’s reports and ratings to see how they spend donations. If you see bad reviews that are of concern to you, find another organization.

Find out who’s behind a crowdfunding request or social media donation link — before giving. Scammers use stolen photos and other people’s stories to raise money for themselves, not for you.

Find out who’s organizing the campaign since that’s who gets the money donated. They’re expected to give it to the intended recipient. The safest way to give through crowdfunding or social media is to only donate to people you know and trust.

Pay with safer payment methods. Scammers ask you to donate in ways that make it hard to get your money back — by gift card or wire transfer, or by cryptocurrency. The safest way to donate is by credit card, which gives you some protection if something goes wrong.

Learn more at ftc.gov/charity. Report scams to FTC at ReportFraud.ftc.gov and your state charity regulator.

                                                              #

A Free Public Service

SCAMS BULLETIN Host Jay White is an inactive attorney in San Mateo, California.

October 27, 2022

Attribution US Federal Trade Commission

Scammers are at it again, impersonating well-known businesses and trying to rip people off. This time they’re pretending to be from Geek Squad, Best Buy’s tech support service. Here’s what we’re hearing about the scam and what to do if you see it.

You get a text message or email that says you were or will be charged hundreds of dollars to renew your Geek Squad membership. If you want to dispute the charge or cancel your membership, the message says you must call a phone number within 24 hours.

If you call the number — which you should not do — the scammer might ask for remote access to your computer. If you give it to them, they can install spyware programs on your computer, steal your online banking credentials, and drain money from your bank account.

Some scammers may ask for your bank account information to refund your money, then fake a transaction and make it look like they accidentally refunded you too much. To pay them back, they tell you to buy gift cards and give them the gift card numbers and PINs.

Scammers send alarming messages like this to rattle you. Don’t let them. If you think the message is legitimate, contact the company in question using a phone number you know is real. Do not use the number included in the message.

Also check your credit card or bank account for an unauthorized transaction. If you see one, report it to the institution and ask them to reverse it and give you back your money. Find out what to do if you paid a scammer, or gave them your personal information or access to your computer.

If you see a scam, report it to the FTC at ReportFraud.ftc.gov.

                                                        #

A free Public Service

SCAMS BULLETIN Host Jay White is an inactive attorney in San Mateo County, California.

October 22, 2022

A Free Pub lic Service

SCAMS BULLETIN Host Jay White is an inactive attorney in San Mateo County, California.

October 2019

HOMEOWNER LOSS FRAUD

Attribution US Federal Trade Commission

Many generous persons wish to help homeowners who have been victims of fires, floods and Hurricanes. Case in point, Hurricane Ian in Florida.

We know from experience it won’t be long before scammers start trying to cash in on the deadly storm. Here are a few ways that scammers might try to take your money or personal information:

*Spot imposter scams.

 Scammers might pretend to be safety inspectors, government officials trying to help you, or utility workers who say immediate work is required. Don’t give them money, and ask for identification to verify who you are dealing with — before sharing personal information like your Social Security or account numbers.

*Spot FEMA impersonators charging application fees.

If someone wants money to help you qualify for FEMA funds, it’s a scam. Download the FEMA Mobile App to get alerts and information.

*Spot home improvement and debris removal scams.

Unlicensed contractors and scammers may appear in recovery zones with promises of quick repairs or clean-up services. Walk away if they demand cash payments up front, or refuse to give you copies of their license, insurance, and a contract in writing.

*Spot rental listing scams.

Scammers know people need a place to live while they rebuild. They’ll advertise rentals that don’t exist to get your money and run. The scammers are the ones who tell you to wire money, or who ask for security deposits or rent before you’ve met or signed a lease.

*Spot charity scams.

 Scammers will often try to profit from the misfortune of others, sometimes using familiar-sounding names or logos. Check Donating Wisely and Avoiding Charity Scams before opening up your wallet.

*Learn more at ftc.gov/WeatherEmergencies and report weather-related scams to the FTC at ReportFraud.ftc.gov.                                                         

A Free Public Service

SCAMS BULLETIN Host Jay White is an inactive attorney in San Mateo County, California.

October 4, 2022

HURRICANE RECOVERY SCAMS

Curtesy Federal Trade Commission

Recovery scams will follow Hurricane Ian.

Nobody knows how long it’ll take to recover from the destruction Hurricane Ian left behind. But we do know it won’t be long before scammers start trying to cash in on the deadly storm. Whether you’re getting back on your feet or looking for ways to help people in areas hit hardest, learn how scammers operate — and how to avoid them.

Here are a few ways that scammers might try to take your money or personal information after a weather emergency.

Spot imposter scams.

*Scammers might pretend to be safety inspectors, government officials trying to help you, or utility workers who say immediate work is required. Don’t give them money, and ask for identification to verify who you are dealing with — before sharing personal information like your Social Security or account numbers.

*Spot FEMA impersonators charging application fees. If someone wants money to help you qualify for FEMA funds, it’s a scam. Download the FEMA Mobile App to get alerts and information.

*Spot home improvement and debris removal scams. Unlicensed contractors and scammers may appear in recovery zones with promises of quick repairs or clean-up services. Walk away if they demand cash payments up front, or refuse to give you copies of their license, insurance, and a contract in writing.

*Spot rental listing scams. Scammers know people need a place to live while they rebuild. They’ll advertise rentals that don’t exist to get your money and run. The scammers are the ones who tell you to wire money, or who ask for security deposits or rent before you’ve met or signed a lease.

*Spot charity scams. Scammers will often try to profit from the misfortune of others, sometimes using familiar-sounding names or logos. Check Donating Wisely and Avoiding Charity Scams before opening up your wallet.

Learn more at ftc.gov/WeatherEmergencies and report weather-related scams to the FTC at ReportFraud.ftc.gov.

A Free Public Service

SCAMS BULLETIN Host Jay White is an inactive attorney in San Mateo County, California.

September 28, 2022

 CHARITY SCAMS

Courtesy US Federal Trade Commission—Unabridged

As recovery efforts continue in areas hit hard by mother nature’s recent bi-coastal punch, scammers are not far behind. They see tragedy as opportunity, and they’ll use the devastation caused by severe storms — like Typhoon Merbok, Hurricane Fiona, and Hurricane Ian, now headed for shore — to try to take advantage of those affected, as well as of anyone who tries to help. That’s why it’s so important to know how to spot the scams that often follow natural disasters.

If you suffered damage from one of the recent storms, scammers may approach you to clean up debris, pose as a government official, or offer to help you get aid for a fee. Walk away from anyone who demands personal information or money upfront. That’s always a scam. Find more on how to deal with and recover from disasters at ftc.gov/weatheremergencies.

If you want to donate to victims of the historic flooding in Alaska, or those affected by Hurricane Fiona in Puerto Rico, Bermuda and other islands in the Caribbean, here’s how to make sure your money goes to the people you want to help:

Use these tools to research the organization before you give. Don’t assume that familiar-sounding names or messages posted on social media are legitimate.

Donate to charities you know and trust and with a proven record of dealing with disasters.

Be cautious about giving to individuals on crowdfunding sites. It’s safest to give to someone you personally know and trust. Review the platform’s policies and procedures, not all crowdfunding sites verify postings for help after a disaster. Read Donating Through Crowdfunding, Social Media, and Fundraising Platforms.

If someone wants donations in cash, by gift card, by wiring money or cryptocurrency, don’t do it. Pay by credit card, which offers more protections, or by check.

Learn more about how to avoid charity scams at ftc.gov/charity. And report charity or weather-related scams to the FTC: ReportFraud.ftc.gov.

                                                          %

A Free Public Service

SCAMS BULLETIN Host Jay White is an Inactive attorney in San Mateo County, California.

Sember 28, 2022

SOCIAL MEDIA ACCOUNT HACKS

Attribution scambusters.org

Millions of users are hit every year by social media account hackers.

It’s one of the fastest growing and most alarming Internet crimes, with security experts estimating that somewhere between 20 and 40 percent of all social network accounts have been compromised at some point.

The number one way of hacking an account is simple: The crook poses as a friend of the intended victim asking for help accessing his own (the “friend’s”) account. The message includes a link the victim is supposed to click. But doing so enables the hacker to take over their account and even block access to the real user.

A hacked account can currently be sold on the dark web to scammers and identity thieves for around $50 – one of the most valuable pieces of stolen consumer information currently being traded by hackers.

Once a hacker has control of an account, they have access to the victim’s entire list of friends who will be targeted next.  It’s like a giant pyramid scheme where the number of potential victims multiplies with each account takeover.

Important actions you can take to protect yourself from a social media account takeover:

*If you receive a friend request from someone you’re already linked to, it’s almost certainly a hacking scam, so don’t click on the “accept” button. And then let your friend know.

*If the request comes from someone you know but who you’re not following, again don’t click to accept. Contact the person independently and check that they did

*Always use a strong and unique password for each social media account and use a second pass code or other type of multi-factor authentication (MFA) such as those sent via text messages.

 *Learn more about two-factor authentication from our earlier issue: https://scambusters.org/passwordsecurity2.html.

*If you learn of a data breach affecting your social media account, change your password immediately.

*Don’t download third party apps promoted on your social media account. They can be used to hack your account.

What to do if Your Account Has Been Hacked:

You want to regain control of your account as soon as possible. If the hacker hasn’t changed your password and you still have access to the account, change it yourself immediately.

If you’re locked out, you need to contact the network provider. Different sites have different ways of dealing with it. Search on the phrase “My ——- account has been hacked” (insert the media network name in place of the dashes) and look for results that are actually from the network company.

It’s also important to let your friends know, via email or a message service, to put them on the alert.

                                                               #

A Free Public Service

SCAMS BULLETIN Host Jay White is an innactive atorney in San Mateo County, California.

September 21, 2022

ROBOTEXTS SCAMS

Attribution: scambusters

Spammers and scammers have stepped up their game with spam text messages called “robotexts”.

They may be only fishing for names of people interested in particular products, which they then sell to people who compile marketing lists.

Some of the signs to watch for include:

Phone numbers you don’t recognize or numbers longer than 10 digits-

Vague information that’s supposed to make you want to know more-

Questions that seem to come from someone you don’t know-

Misspellings that are intended to avoid blocking software-

Government departments (and many other organizations) don’t initiate contact via texts.

10 Key Actions to Protect Yourself:

Here’s what the Federal Communications Commission says you can do to protect yourself and help others from the robotext onslaught:

Don’t reply to suspicious texts; don’t even send a “STOP” response if you’re invited to do so-.

Don’t click on links or provide information about yourself.-

File a complaint to the FCC (https://consumercomplaints.fcc.gov/hc/en-us) and/or forward the text to SPAM (7726)-

Delete all suspicious texts.-

Consider installing an anti-malware app, and keep all device security software and operating systems up to date-.

Review text-blocking settings from your phone service provider and on the device itself-.

Both iOS (Apple) and Android phones have spam protection options built in.-

When you visit websites that legitimately require your name and phone number, check their privacy policies regarding text and info-sharing opt-outs.

If someone you know sends a text with a suspicious link that seems out of character, call them to make sure they weren’t hacked-.

If you get an unexpected text from a business you deal with, look up and visit their legitimate website and contact them.-

“The FCC prohibits autodialed text messages from being sent to your mobile phone unless you previously gave consent to receive the message or the message is sent for emergency purposes,” it says.

“The FCC has made clear that phone companies can block suspicious text messaging as a default policy.”

                                                               #