The internet has opened up many opportunities for communication, information, and commerce in today's interconnected world. However, this vast digital landscape also provides fertile ground for a darker aspect of online activity: scams. Internet scams have become increasingly sophisticated, preying on unsuspecting individuals with the promise of easy money, exclusive offers, or even love. From phishing emails to investment fraud and online shopping scams, the tactics employed by scammers are as diverse as they are dangerous. This article delves into general internet scams, shedding light on the common tactics used, the red flags to watch out for, and the measures to protect yourself from these digital deceptions. Scammers use various techniques to trick individuals into revealing their personally identifiable information (PII). They often impersonate trusted brands worldwide, using lookalike websites or messages to create fraudulent campaigns.
Scammers bank on the reputation of popular brands such as Gmail, Outlook, Android, iPhone, Apple, Costco, Airbnb, and Booking.com to implement their malpractices. They use fake websites that appear very similar to the original ones to fool users. Trend Micro identified these brands as the top targets for brand impersonation scams in late-July.
Table of Contents
Phishing Links via Text or Emails
Phishing attacks are fraud attempts to deceive individuals into revealing sensitive information, such as passwords, financial details, or personal data, by posing as trustworthy entities. These attacks typically occur through emails, messages, or websites that mimic legitimate sources, tricking victims into providing their confidential information to cybercriminals. Scammers often distribute phishing links through emails or text messages. These links direct users to phishing sites to extract sensitive information such as email addresses, credit card numbers, and Social Security numbers. These scams primarily target Gmail, Outlook, Android, and iPhone users and can occur in various formats.
PII theft for cybercrimes
PII theft stands for Personally Identifiable Information theft. It refers to the unauthorized access, acquisition, or use of an individual's personal information, such as name, address, Social Security number, financial data, or medical records, by cybercriminals for malicious purposes. PII theft can lead to identity theft, financial fraud, and other forms of cybercrime, causing significant harm to the affected individuals. The end goal of these scams is to acquire your personally identifiable information (PII) to perpetrate cybercrimes. This may include draining your bank account or committing identity theft. These scammers will go to great lengths, including using deceitful pretexts, to gain access to your PII and exploit it for their benefit.
Use of fake online survey forms
One common tactic scammers employ is the use of fake online survey forms. Fake online surveys are deceptive attempts to collect personal information or exploit users maliciously. These surveys often promise rewards, prizes, or discounts to entice users to participate. However, their primary goal is to gather sensitive information like email addresses, phone numbers, or financial details, which can then be used for spamming, phishing, identity theft, or other fraudulent activities. Scammers create these fake surveys to manipulate users into revealing personal data or clicking on malicious links, ultimately putting their online security and privacy at risk. They design these forms to look official, fooling users into providing their PII under the guise of a simple survey. It's important to remember that reputable companies will never ask for sensitive information via a survey form.
False sales campaigns or free gifts as lures
Scammers frequently use incentives, like false sales campaigns or offers of free gifts, to lure individuals into providing their information. These enticing offers often mask the true intent of the scammer - to steal personal information for criminal activities. Users need to be vigilant and skeptical of too-good-to-be-true offers, which are often a trap laid by scammers.
False sale online campaigns involve fraudsters creating fake advertisements or promotions that promise significant discounts, deals, or limited-time offers on products or services. These campaigns are designed to attract unsuspecting consumers to websites or platforms operated by scammers. Once users are lured in, they may be asked to provide personal and financial information or make payments for products that never actually arrive.
These campaigns can take various forms, such as fake online stores, counterfeit websites imitating legitimate brands, or social media posts with enticing offers. The scammers aim to exploit users' desire for bargains and trust in well-known brands to steal their personal information and money or even spread malware. Consumers must be cautious, verify the legitimacy of offers, and only make purchases from reputable and secure online sources to avoid falling victim to false sale online campaigns.
Case Examples of Scams
Popular brands like Apple, Costco, Airbnb, and Booking.com are often the victims of fraudulent impersonations. Scammers use well-crafted imitations of these popular brands to deceive unsuspecting consumers. Here are some practical examples of how these scams work.
Scammers posing as Apple for gift delivery management
Scammers sometimes impersonate Apple and lure users into clicking on a sent link, supposedly to manage the delivery of a gift. Upon clicking that link, the user is directed to an online form, misleadingly stating they've won a gift. To receive the gift, the user is instructed to fill the form, providing much personally identifiable information like delivery address and credit card details. The scammers then record and exploit this provided information for their selfish gains.
Fake Costco survey emails
In the name of Costco, scammers send out emails containing fake surveys. The emails look believable, complete with Costco's brand logo and familiar aesthetics. Recipients are encouraged to participate in the survey, during which they are prompted to provide their personal and payment information. This technique, known as phishing, is a common tactic scammers use to gather sensitive information from their victims.
Copycat Airbnb and Booking.com websites
Scammers use the surge in travel during summer to their advantage, impersonating popular booking giants like Airbnb and Booking.com. They construct fake websites that are visually identical to real ones, fooling users into believing they're authentic. One example of such a website is "airbnb[.]ld83528[.]r," which is designed with the sole purpose of extracting personal and credit card information from users.
Protection Tips
As scamming techniques become more sophisticated, the need for heightened cybersecurity grows. Multiple strategies can be employed to protect oneself from scams. Staying one step ahead starts with exercising internet safety precautions and equipping your devices with reliable security tools.
Checking the Legitimacy of the Sender’s Mobile Number and Email address
One of the first defenses against scams is to verify the legitimacy of the sender's mobile number or email address. Although some fraudulent communications may seem authentic, it's always best to double-check before taking action. Often, a simple online search of the sender's contact details can reveal if they have been associated with known scams.
Being aware of red flags such as free gift offers
Free gifts are often dangled as bait by scammers. While the offer may appear intriguing, such deals often lead to phishing sites that steal your PII. So, if an offer appears too good to be true, it probably is. Be cautious, and remember that reputable companies seldom offer gifts that require divulging personal or financial information in return.
Using only Official Websites and Apps
To minimize scam risk, use official websites and apps when transacting online or sharing PII. Look out for 'https' and the lock symbol in your browser's address bar to confirm you're on a secure site. Fake websites are a common medium for scammers to mimic popular brands and dupe unsuspecting users.
Checking and Securing PII
Regularly check if any of your PII has been leaked online. You can do this by using reputable online services. Securing your social media accounts is crucial to protect yourself from identity theft and other cyber-related crimes.
Personal Experiences with Scams
Scams are, unfortunately, more common than we'd like them to be, affecting countless individuals each year. It's sometimes helpful to hear about experiences from those who have encountered scams to understand these deceptive practices better.
